Re: [PATCH net-next v4 0/2] tcp: add a new TW_PAWS drop reason

From: Eric Dumazet
Date: Wed Apr 09 2025 - 12:06:33 EST

Next message: Kalesh Anakkur Purayil: "Re: [PATCH net v1] octeon_ep_vf: Resolve netdevice usage count issue"
Previous message: Miguel Ojeda: "Re: [PATCH 6.12 000/426] 6.12.23-rc3 review"
In reply to: Jiayuan Chen: "[PATCH net-next v4 2/2] tcp: add LINUX_MIB_PAWS_TW_REJECTED counter"
Next in thread: patchwork-bot+netdevbpf: "Re: [PATCH net-next v4 0/2] tcp: add a new TW_PAWS drop reason"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Apr 9, 2025 at 1:27 PM Jiayuan Chen <jiayuan.chen@xxxxxxxxx> wrote:
>
> Devices in the networking path, such as firewalls, NATs, or routers, which
> can perform SNAT or DNAT, use addresses from their own limited address
> pools to masquerade the source address during forwarding, causing PAWS
> verification to fail more easily under TW status.
>
> Currently, packet loss statistics for PAWS can only be viewed through MIB,
> which is a global metric and cannot be precisely obtained through tracing
> to get the specific 4-tuple of the dropped packet. In the past, we had to
> use kprobe ret to retrieve relevant skb information from
> tcp_timewait_state_process().
>
> We add a drop_reason pointer and a new counter.

Reviewed-by: Eric Dumazet <edumazet@xxxxxxxxxx>

Thanks !

Next message: Kalesh Anakkur Purayil: "Re: [PATCH net v1] octeon_ep_vf: Resolve netdevice usage count issue"
Previous message: Miguel Ojeda: "Re: [PATCH 6.12 000/426] 6.12.23-rc3 review"
In reply to: Jiayuan Chen: "[PATCH net-next v4 2/2] tcp: add LINUX_MIB_PAWS_TW_REJECTED counter"
Next in thread: patchwork-bot+netdevbpf: "Re: [PATCH net-next v4 0/2] tcp: add a new TW_PAWS drop reason"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]