Re: [PATCH net v2] net: add recursion limit to GRO

2016-10-19 Thread Tom Herbert
On Wed, Oct 19, 2016 at 9:29 AM, Sabrina Dubroca wrote: > Currently, GRO can do unlimited recursion through the gro_receive > handlers. This was fixed for tunneling protocols by limiting tunnel GRO > to one level with encap_mark, but both VLAN and TEB still have this > problem. Thus, the kernel

[PATCH net v2] net: add recursion limit to GRO

2016-10-19 Thread Sabrina Dubroca
Currently, GRO can do unlimited recursion through the gro_receive handlers. This was fixed for tunneling protocols by limiting tunnel GRO to one level with encap_mark, but both VLAN and TEB still have this problem. Thus, the kernel is vulnerable to a stack overflow, if we receive a packet compose