[issue13891] CPU DoS With Python's socket module

2012-01-27 Thread Charles-François Natali
Charles-François Natali added the comment: I don't want to be harsh, but this whole report just doesn't make sense You're getting 90% CPU usage simply because you're flooding your server. Closing. -- nosy: +neologix resolution: -> invalid stage: -> committed/rejected status: open -> c

[issue13891] CPU DoS With Python's socket module

2012-01-27 Thread Antoine Pitrou
Antoine Pitrou added the comment: > The issue is that the CPU spikes to ~90% utilization for the server > during the attack, for as long as the attack lasts. So the theory is > that Python isn't throttling or processing the malformed packets > properly. Copying Renier for any additional info.

[issue13891] CPU DoS With Python's socket module

2012-01-27 Thread John Zimmerman
John Zimmerman added the comment: Hi Antoine, The issue is that the CPU spikes to ~90% utilization for the server during the attack, for as long as the attack lasts. So the theory is that Python isn't throttling or processing the malformed packets properly. Copying Renier for any addition

[issue13891] CPU DoS With Python's socket module

2012-01-27 Thread Antoine Pitrou
Antoine Pitrou added the comment: But what does the ISIC tool report and why do you think it is a problem in Python's socket module? As far as I can read on its website, "ISIC is a suite of utilities to exercise the stability of an IP Stack and its component stacks (TCP, UDP, ICMP et. al.)".

[issue13891] CPU DoS With Python's socket module

2012-01-27 Thread John Zimmerman
'netstat -lnup | grep 514' shows python as the bound application. Thanks, John -Original Message- From: Antoine Pitrou [mailto:rep...@bugs.python.org] Sent: Friday, January 27, 2012 12:47 PM To: John Zimmerman (johzimme) Subject: [issue13891] CPU DoS With Python's socket

[issue13891] CPU DoS With Python's socket module

2012-01-27 Thread Antoine Pitrou
Antoine Pitrou added the comment: What do you call "malformed UDP packets" and how should they be detected by the library? -- nosy: +pitrou ___ Python tracker ___ _

[issue13891] CPU DoS With Python's socket module

2012-01-27 Thread John Zimmerman
New submission from John Zimmerman : Python's socket module as included in Ubuntu Lucid (python version 2.6.5) does not correctly handle and exclude malformed UDP packets. This means that UDP listening programs written in python on this version are susceptible to malformed-UDP-packet based DoS