| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 10 Dec 2010 17:01:33 +0100 From: Michał Mirosław <mirqus@...il.com> To: David Lamparter <equinox@...c24.net> Cc: David Miller <davem@...emloft.net>, bhutchings@...arflare.com, srk@...com, netdev@...r.kernel.org, Jens Axboe <axboe@...nel.dk> Subject: Re: Adding Support for SG,GSO,GRO W dniu 10 grudnia 2010 15:31 użytkownik David Lamparter <equinox@...c24.net> napisał: > On Fri, Dec 10, 2010 at 03:18:11PM +0100, Michał Mirosław wrote: >> I'm trying to understand the dependency because it looks artificial for me. > > You have the data you want to send in the RAM, somewhere, possibly > scattered. The application calls sendfile(). The kernel puts the > transmission in the network card's queue, which might already have lots > of entries. > > A millisecond later - an eternity for the CPU - the card decides to do > the transmission. > > However, the data might have changed in the meantime. > > sendfile() is defined so that it works asynchronously, that means if you > change the data while it is in the queue, you get unpredictable results. > > But, what you should NOT get is packets with an invalid checksum. > Whatever data you are sending, it needs to have a correct checksum. > > Now, if the card does the checksum itself, everything is fine. But what > are you supposed to do if the card can't checksum? Call back the kernel > at the point where the card does the TX? That's pointless (and racy). > Pre-calculate the Checksum at submission time? Doesn't work, you would > have to make a copy of the data, so it doesn't change anymore, so the > checksum stays correct. But not copying the data is the whole point of > sendfile(). The question is do we really want good checksum for bogus data? I think that what matters is that good data (it had not changed between queuing and sending, and so the checksum does not depend on whether hardware or software calculated it) need to be accompanied by good checksum. For broken data it would be even better to not send anything, but that's not always possible. Bad checksum in this case is actually a good thing as it clearly shows that something is broken in the sender and avoids accepting the data as valid at the receiving end. sendfile() is supposed to replace read()/write() loops to avoid copying data buffers. Whatever the optimizations, it has no additional cavat that it might corrupt the transfer. Fixing the checksum in case data gets corrupted is not the right thing, I think. The change of file data might happen if sendfile() submits page from pagecache when something writes to the file, or when an application modifies vmsplice()-submitted memory. In current kernel sendfile() is a wrapper around splice(), and so has a kernel pipe buffer between file and the socket. Can this hide the possible data changes? Best Regards, Michał Mirosław -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists