lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-Id: <20100329.152139.235700903.davem@davemloft.net>
Date:	Mon, 29 Mar 2010 15:21:39 -0700 (PDT)
From:	David Miller <davem@...emloft.net>
To:	herbert@...dor.apana.org.au
Cc:	netdev@...r.kernel.org
Subject: Re: [PATCH RFC] inetpeer: Support ipv6 addresses.

From: Herbert Xu <herbert@...dor.apana.org.au>
Date: Sun, 28 Mar 2010 21:59:31 +0800

> On Sun, Mar 28, 2010 at 06:40:12AM -0700, David Miller wrote:
>>
>> Same for all the other metrics at the TCP level.
> 
> I don't think they are quite the same.  The TCP time stamp is
> an attribute of the destination host, it doesn't vary depending
> on which route you take to reach the host.  The MTU on the other
> hand is an attribute of the route that reaches the host.

It does make a difference, I think.

When we use IPSEC rules on ports and crazy stuff like that,
we end up with cases such as:

1) We're going over a VPN so RTT, RTTVAR, SSTHRESH, CWND, and other
   TCP metrics which are based upon aspects of the path can end up
   being wildly different.

2) even the end host can be different in some convoluted
   setups

IPSEC encapsulation can effectively change the entire universe in fact
:-) Also, even considering only case #1 above, that's nearly half of
the metrics which we arguably can't move into something like the
inetpeer cache.

This is basically why I've been resistent in the past to these kinds
of ideas to simplify metric handling, as it has the potential to break
something.

The gains of being able to pull this off are still enticing which
is why this topic keeps getting revisited nonetheless :-)
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ