On Fri, 2005-03-25 at 16:00, Patrick McHardy wrote:
> I asked Phil to send a new patch which drops the reference when
> the packet leaves IP. We can't make assumptions about the packets
> fate after that, and the problem with hanging conntrack unload
> really should get fixed once and for all.
>
Queues which are not getting consumed are always a problem with
skbs.
One of the classical problems i have seen posted is someone
is some person running some IDS or some other thing using
BPF with more than one socket and having his low mem box being pounded
by some DOS. Soon OOM kicks in and starts randomly killing processes
because skbs are still being refcounted by the user space app that is
now unable to keep up.
i.e it is a generic problem that would happen even with NAPI with lack
of proper feedback. i suppose a contrack reference adds more of a twist
to it ;->
cheers,
jamal
|