From: Eric Dumazet <eric.dumazet@gmail.com>
To: Daniel Axtens <dja@axtens.net>,
Marcelo Ricardo Leitner <marcelo.leitner@gmail.com>,
netdev@vger.kernel.org
Subject: Re: qdisc_pkt_len_init: SCTP/GSO_BY_FRAGS and robustness questions
Date: Tue, 06 Feb 2018 20:54:35 -0800 [thread overview]
Message-ID: <1517979275.3715.155.camel@gmail.com> (raw)
In-Reply-To: <871shxy4zv.fsf@linkitivity.dja.id.au>
On Wed, 2018-02-07 at 12:15 +1100, Daniel Axtens wrote:
> Hi Marcelo and Eric,
>
> I'm working on checking code that might be impacted by GSO_BY_FRAGS -
> after finding that the token bucket filter qdisc code doesn't handle it
> properly, DaveM said I should look for other places where this might be
> an issue [0].
>
> I'm currently looking at qdisc_pkt_len_init in net/core/dev.c. This is
> called by __dev_queue_xmit, before validate_xmit_skb, so before an SCTP
> skb would be segmented if the hardware doesn't support SCTP offload.
>
> There are two things I was hoping you two could offer some advice on:
>
> 1) Eric, in 7c68d1a6b4db ("net: qdisc_pkt_len_init() should be more
> robust") you replaced a chunk of code that is similar to the code
> found in skb_gso_transport_seglen() and replaced it with more robust
> code. Do we need to change skb_gso_transport_seglen() in a similar way?
I would prefer we get rid of DODGY ability to provide buggy packets.
It would be silly to 'fix' all the places in the kernel (like hundred
of drivers I guess), while we can simply validate packets at the time
they are provided by malicious sources (user space using
af_packet/tun/virtio_net ...)
>
> 2) Marcelo, unlike skb_gso_transport_seglen(), where you added a case
> for SCTP in 90017accff61 ("sctp: Add GSO support"), there doesn't
> seem to be a GSO_BY_FRAGS or SCTP check in qdisc_pkt_len_init, so I
> think the accounting is probably wrong for SCTP. I'm not 100% sure
> how to fix this as it's now quite different from the calcuations in
> skb_gso_transport_seglen() - so I was hoping that you might have an
> idea.
>
> Thanks in advance!
>
> [0]: https://patchwork.ozlabs.org/patch/869145/#1852414
>
> Regards,
> Daniel
>
>
next prev parent reply other threads:[~2018-02-07 4:54 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-02-07 1:15 qdisc_pkt_len_init: SCTP/GSO_BY_FRAGS and robustness questions Daniel Axtens
2018-02-07 4:54 ` Eric Dumazet [this message]
2018-02-07 17:54 ` Marcelo Ricardo Leitner
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1517979275.3715.155.camel@gmail.com \
--to=eric.dumazet@gmail.com \
--cc=dja@axtens.net \
--cc=marcelo.leitner@gmail.com \
--cc=netdev@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.