Page MenuHomeFreeBSD
Differential D57134

sendfile: Fix bug when using headers with SW KTLS offload
ClosedPublic
Actions

Authored by gallatin on May 20 2026, 6:59 PM.
Tags
None
Referenced Files
Unknown Object (File)
Mon, Jun 8, 9:40 AM
Unknown Object (File)
Sun, Jun 7, 7:08 AM
Unknown Object (File)
Sun, Jun 7, 7:04 AM
Unknown Object (File)
Sat, Jun 6, 9:11 PM
Unknown Object (File)
Sat, Jun 6, 9:08 PM
Unknown Object (File)
Fri, Jun 5, 12:31 AM
Unknown Object (File)
Fri, Jun 5, 12:27 AM
Unknown Object (File)
Thu, Jun 4, 5:39 AM
View All 24 Files
Subscribers
imp
olce

Details

Reviewers
glebius
kib
jhb
markj
Commits
rGfd9af1e7084c: sendfile: Fix bug when using headers with SW KTLS offload
Summary

When using SW KTLS, we must account for the headers in sf_iodone() in terms of either freeing or enqueuing them for TLS work. Not doing so can lead to a situation where we enqueue only the payload, and not the header, for encryption. Rather than leaking the header, the socket is left "hung" with the header marked M_NOTREADY.

We noticed this at Netflix when working on an SSL_Sendfile that allows using the hdtr feature of sendfile.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

gallatin created this revision.May 20 2026, 6:59 PM
Herald added subscribers: olce, imp. · View Herald TranscriptMay 20 2026, 6:59 PM
gallatin requested review of this revision.May 20 2026, 6:59 PM
glebius accepted this revision.May 20 2026, 7:33 PM
This revision is now accepted and ready to land.May 20 2026, 7:33 PM
kib added inline comments.May 21 2026, 9:33 AM
sys/kern/kern_sendfile.c
346

Why 'else'? sfio->m could point to m0 AFAIS.

gallatin added inline comments.May 21 2026, 3:57 PM
sys/kern/kern_sendfile.c
346

I'm not sure I understand. The mbuf chain is constructed as such that the final "m0" is the first payload mbuf, and "m" is the header mbuf, which then points to m0 as next.

So with header, we have: mh->m0....mtail
and without header we have: m0...mtail

So if we omit the else, then we ready m0..mtail twice.

kib added inline comments.May 21 2026, 4:10 PM
sys/kern/kern_sendfile.c
346

I was asking to understand.

gallatin marked 2 inline comments as done.May 21 2026, 4:14 PM
gallatin added inline comments.
sys/kern/kern_sendfile.c
346

I view you as so much better at seeing edge cases and tricky interactions than me that when you ask a question like that, I'm assuming that I am the one who has missed something important. :)

glebius added inline comments.May 21 2026, 4:26 PM
sys/kern/kern_sendfile.c
346

<offtopic>
When a Westerner asks a question, they point at a mistake. When Slavic guy asks a question, he is actually asking a question to fulfill his knowledge.

Myself trying to balance between the two communication cultures is on a brink of mental disorder :)
</offtopic>

kib accepted this revision.May 22 2026, 10:27 AM
Closed by commit rGfd9af1e7084c: sendfile: Fix bug when using headers with SW KTLS offload (authored by gallatin). · Explain WhyMay 22 2026, 6:34 PM
This revision was automatically updated to reflect the committed changes.
gallatin marked an inline comment as done.
gallatin added a commit: rGfd9af1e7084c: sendfile: Fix bug when using headers with SW KTLS offload.

Revision Contents
Changeset List

PathSize
sys/
kern/
23 lines

Diff 178417

View Options

sys/kern/kern_sendfile.c

Loading...