[net-next,v3,0/2] tcp: add a new TW_PAWS drop reason

Message ID	20250325144704.14363-1-jiayuan.chen@linux.dev (mailing list archive)
Headers	show Received: from out-186.mta0.migadu.com (out-186.mta0.migadu.com [91.218.175.186]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 79B3825B68F for <netdev@vger.kernel.org>; Tue, 25 Mar 2025 14:47:40 +0000 (UTC) From: Jiayuan Chen <jiayuan.chen@linux.dev> To: netdev@vger.kernel.org, edumazet@google.com Cc: linux-kernel@vger.kernel.org, kuniyu@amazon.com, davem@davemloft.net, kuba@kernel.org, pabeni@redhat.com, horms@kernel.org, dsahern@kernel.org, ncardwell@google.com, mrpre@163.com, Jiayuan Chen <jiayuan.chen@linux.dev> Subject: [PATCH net-next v3 0/2] tcp: add a new TW_PAWS drop reason Date: Tue, 25 Mar 2025 22:47:02 +0800 Message-ID: <20250325144704.14363-1-jiayuan.chen@linux.dev> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	tcp: add a new TW_PAWS drop reason \| expand [net-next,v3,0/2] tcp: add a new TW_PAWS drop reason [net-next,v3,1/2] tcp: add TCP_RFC7323_TW_PAWS drop reason [net-next,v3,2/2] tcp: add LINUX_MIB_PAWS_TW_REJECTED counter

Message ID

20250325144704.14363-1-jiayuan.chen@linux.dev (mailing list archive)

Headers

From: Jiayuan Chen <jiayuan.chen@linux.dev>
To: netdev@vger.kernel.org,
	edumazet@google.com
Cc: linux-kernel@vger.kernel.org,
	kuniyu@amazon.com,
	davem@davemloft.net,
	kuba@kernel.org,
	pabeni@redhat.com,
	horms@kernel.org,
	dsahern@kernel.org,
	ncardwell@google.com,
	mrpre@163.com,
	Jiayuan Chen <jiayuan.chen@linux.dev>
Subject: [PATCH net-next v3 0/2] tcp: add a new TW_PAWS drop reason
Date: Tue, 25 Mar 2025 22:47:02 +0800
Message-ID: <20250325144704.14363-1-jiayuan.chen@linux.dev>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

tcp: add a new TW_PAWS drop reason | expand

Message

Jiayuan Chen March 25, 2025, 2:47 p.m. UTC

PAWS is a long-standing issue, especially when there are upstream network
devices, making it more prone to occur.

Currently, packet loss statistics for PAWS can only be viewed through MIB,
which is a global metric and cannot be precisely obtained through tracing
to get the specific 4-tuple of the dropped packet. In the past, we had to
use kprobe ret to retrieve relevant skb information from
tcp_timewait_state_process().

---
v2 -> v3: use new SNMP counter and drop reason suggested by Eric.
https://lore.kernel.org/netdev/5cdc1bdd9caee92a6ae932638a862fd5c67630e8@linux.dev/T/#t

I didn't provide a packetdrill script.
I struggled for a long time to get packetdrill to fix the client port, but
ultimately failed to do so...

Instead, I wrote my own program to trigger PAWS, which can be found at
https://github.com/mrpre/nettrigger/tree/main
'''
//assume nginx running on 172.31.75.114:9999, current host is 172.31.75.115
iptables -t filter -I OUTPUT -p tcp --sport 12345 --tcp-flags RST RST -j DROP
./nettrigger -i eth0 -s 172.31.75.115:12345 -d 172.31.75.114:9999 -action paws
'''


Jiayuan Chen (2):
  tcp: add TCP_RFC7323_TW_PAWS drop reason
  tcp: add LINUX_MIB_PAWS_TW_REJECTED counter

 Documentation/networking/net_cachelines/snmp.rst | 2 ++
 include/net/dropreason-core.h                    | 7 +++++++
 include/net/tcp.h                                | 3 ++-
 include/uapi/linux/snmp.h                        | 1 +
 net/ipv4/proc.c                                  | 1 +
 net/ipv4/tcp_ipv4.c                              | 3 ++-
 net/ipv4/tcp_minisocks.c                         | 9 ++++++---
 net/ipv6/tcp_ipv6.c                              | 3 ++-
 8 files changed, 23 insertions(+), 6 deletions(-)