Rename QDISC_DROP_CAKE_FLOOD to QDISC_DROP_FLOOD_PROTECTION to use a
generic name without embedding the qdisc name. This follows the
principle that drop reasons should describe the drop mechanism rather
than being tied to a specific qdisc implementation.
The flood protection drop reason is used by qdiscs implementing
probabilistic drop algorithms (like BLUE) that detect unresponsive
flows indicating potential DoS or flood attacks. CAKE uses this via
its Cobalt AQM component.
Signed-off-by: Jesper Dangaard Brouer <hawk@kernel.org>
Reviewed-by: Toke Høiland-Jørgensen <toke@redhat.com>
Link: https://patch.msgid.link/177211347537.3011628.13759059534638729639.stgit@firesoul
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
FN(OVERLIMIT) \
FN(CONGESTED) \
FN(MAXFLOWS) \
- FN(CAKE_FLOOD) \
+ FN(FLOOD_PROTECTION) \
FN(BAND_LIMIT) \
FN(HORIZON_LIMIT) \
FN(FLOW_LIMIT) \
*/
QDISC_DROP_MAXFLOWS,
/**
- * @QDISC_DROP_CAKE_FLOOD: CAKE qdisc dropped packet due to flood
- * protection mechanism (BLUE algorithm). This indicates potential
- * DoS/flood attack or unresponsive flow behavior.
+ * @QDISC_DROP_FLOOD_PROTECTION: packet dropped by flood protection
+ * mechanism detecting unresponsive flows (potential DoS/flood).
+ * Used by qdiscs implementing probabilistic drop algorithms like
+ * BLUE (e.g., CAKE's Cobalt AQM).
*/
- QDISC_DROP_CAKE_FLOOD,
+ QDISC_DROP_FLOOD_PROTECTION,
/**
* @QDISC_DROP_BAND_LIMIT: packet dropped because the priority band's
* limit was reached. Used by qdiscs with priority bands that have
/* Simple BLUE implementation. Lack of ECN is deliberate. */
if (vars->p_drop && reason == QDISC_DROP_UNSPEC &&
get_random_u32() < vars->p_drop)
- reason = QDISC_DROP_CAKE_FLOOD;
+ reason = QDISC_DROP_FLOOD_PROTECTION;
/* Overload the drop_next field as an activity timeout */
if (!vars->count)
projects / thirdparty / kernel / linux.git / commitdiff
