Small patch to optionally remove the TCP reassembly max queue length
Diff Detail
Diff Detail
- Lint
Lint Skipped - Unit
Tests Skipped
Event Timeline
Comment Actions
Can you explain a bit more about the rationale?
One of the reason for the reassembly queue length limit is to prevent DOS attacks by injecting arbitrarily ordered packets, where traversal of the queue can peg the CPU extremely... Only "common" cases, expected to happen in non-pathological situations, are handled efficiently with the tailq (prepend/append) - an attacker could trigger the most complex reassembly path until all of the receive window is exhausted (byte-for-byte).