[CRIU] [PATCHv2 1/2] net: add nftables c/r
Kirill Gorkunov
gorcunov at virtuozzo.com
Thu Nov 14 11:32:08 MSK 2019
On Thu, Nov 14, 2019 at 12:02:01AM -0800, Andrei Vagin wrote:
...
> Which implies to move in part of netlink protocol into criu.
> Personally I don't mind but to me this looks a bit complex.
> I would rather stick with not that fast but more reliable
> usage of exec'ing CR_NFTABLES and the we could try to
> implement builtin (netlink based) data fetch from
> the kernel.
>
> I believe we already have all required parts of netlink in the criu code
> base. And our experience with the iptable tool showed that tools are not
> always reliable. I think it's worth to try to implement this and see how
> it will looks like. I think it should not take more than an hour or two.
I already heard this phrase "it should not take more than an hour or two"
once or two times -- it ended up in a week coding marathon, so no longer
buy it :) I must confess I didn't look into kernel sources to figure out
which exactly things are needed but have a serious doubts it is that easy.
Still if Alexander would be able to estimate what we need to fetch by hands
this would be great!
Cyrill
More information about the CRIU
mailing list