Re: [PATCH 3/4] net-next: frags: add inetpeer frag_mem tracking

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Eric Dumazet <edumazet@xxxxxxxxxx>
Subject: Re: [PATCH 3/4] net-next: frags: add inetpeer frag_mem tracking
From: Richard Gobert <richardbgobert@xxxxxxxxx>
Date: Thu, 1 Sep 2022 17:01:18 +0200
Cc: David Miller <davem@xxxxxxxxxxxxx>, Jakub Kicinski <kuba@xxxxxxxxxx>, Paolo Abeni <pabeni@xxxxxxxxxx>, Jonathan Corbet <corbet@xxxxxxx>, Hideaki YOSHIFUJI <yoshfuji@xxxxxxxxxxxxxx>, David Ahern <dsahern@xxxxxxxxxx>, Alexander Aring <alex.aring@xxxxxxxxx>, Stefan Schmidt <stefan@xxxxxxxxxxxxxxxxxx>, Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>, Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>, Florian Westphal <fw@xxxxxxxxx>, Martin KaFai Lau <kafai@xxxxxx>, netdev <netdev@xxxxxxxxxxxxxxx>, "open list:DOCUMENTATION" <linux-doc@xxxxxxxxxxxxxxx>, LKML <linux-kernel@xxxxxxxxxxxxxxx>, linux-wpan@xxxxxxxxxxxxxxx, netfilter-devel@xxxxxxxxxxxxxxx, coreteam@xxxxxxxxxxxxx
In-reply-to: <CANn89iLkfMUK8n5w00naST9J+KrLaAqqg2r0X9Sd-L0XzpLzSQ@mail.gmail.com>
References: <20220829114648.GA2409@debian> <CANn89iLkfMUK8n5w00naST9J+KrLaAqqg2r0X9Sd-L0XzpLzSQ@mail.gmail.com>
User-agent: Mutt/1.10.1 (2018-07-13)

On Mon, Aug 29, 2022 at 03:15:47PM -0700, Eric Dumazet wrote:
> We tried to get rid of any dependence over inetpeer, which is not
> resistant against DDOS attacks.
> 
> So I would not add a new dependency.

I see your point. What do you suggest doing differently?

The inetpeer mechanism is used for IPv4 frags. If it isn't resistant
against DDoS attacks, can it perhaps be improved?

Follow-Ups:
- Re: [PATCH 3/4] net-next: frags: add inetpeer frag_mem tracking
  - From: Eric Dumazet

References:
- [PATCH 3/4] net-next: frags: add inetpeer frag_mem tracking
  - From: Richard Gobert
- Re: [PATCH 3/4] net-next: frags: add inetpeer frag_mem tracking
  - From: Eric Dumazet

Prev by Date: Re: [PATCH] drm: Simplify testing on UML with kunit.py
Next by Date: Re: [PATCH] Documentation: stable: Document alternative for referring upstream commit hash
Previous by thread: Re: [PATCH 3/4] net-next: frags: add inetpeer frag_mem tracking
Next by thread: Re: [PATCH 3/4] net-next: frags: add inetpeer frag_mem tracking
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Linux FS] [Yosemite Forum] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper] [Linux Resources]