| To: | David Stevens <dlstevens@xxxxxxxxxx> |
|---|---|
| Subject: | Re: [PATCH] Prevent crash on ip_conntrack removal |
| From: | Nivedita Singhvi <niv@xxxxxxxxxx> |
| Date: | Mon, 23 Aug 2004 17:45:20 -0700 |
| Cc: | Patrick McHardy <kaber@xxxxxxxxx>, "David S. Miller" <davem@xxxxxxxxxx>, laforge@xxxxxxxxxxxxx, netdev@xxxxxxxxxxx, netdev-bounce@xxxxxxxxxxx, netfilter-devel@xxxxxxxxxxxxxxxxxxx, okir@xxxxxxx |
| In-reply-to: | <OF4320C747.75C5E93A-ON88256EF9.00744FBA-88256EF9.00750996@xxxxxxxxxx> |
| References: | <OF4320C747.75C5E93A-ON88256EF9.00744FBA-88256EF9.00750996@xxxxxxxxxx> |
| Sender: | netdev-bounce@xxxxxxxxxxx |
| User-agent: | Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.4.1) Gecko/20031008 |
David Stevens wrote: So, one solution would be to set skb->dst for the head (if NULL) based on a non-null fragment skb->dst. I believe that would prevent the problem case without dropping the fragment, since it'll be processed post-routing only if one of the frags is. This would be more performant than dropping the frags, and requiring a retransmit (or lack thereof, depending on protocol). When I was looking at it, I wondered if conntrack really has a need to reassemble itself, though. Couldn't it let IP do the reassembling and I asked Harald this when I met him last, and he said it does need to. So I don't think this (having conntrack reassemble) is avoidable, unfortunately. Of course, fragmentation, on the other hand, :), ... thanks, Nivedita |
| Previous by Date: | [PATCH 2.6.8.1-mm4 11/11] r8169: vlan support, Francois Romieu |
|---|---|
| Next by Date: | Re: [PATCH] Prevent crash on ip_conntrack removal, Patrick McHardy |
| Previous by Thread: | Re: [PATCH] Prevent crash on ip_conntrack removal, David Stevens |
| Next by Thread: | Re: [PATCH] Prevent crash on ip_conntrack removal, Patrick McHardy |
| Indexes: | [Date] [Thread] [Top] [All Lists] |