From owner-freebsd-current@FreeBSD.ORG  Thu Aug 16 19:52:17 2007
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 3602C16A41A
	for <freebsd-current@freebsd.org>; Thu, 16 Aug 2007 19:52:17 +0000 (UTC)
	(envelope-from gallatin@cs.duke.edu)
Received: from duke.cs.duke.edu (duke.cs.duke.edu [152.3.140.1])
	by mx1.freebsd.org (Postfix) with ESMTP id EFDAF13C442
	for <freebsd-current@freebsd.org>; Thu, 16 Aug 2007 19:52:16 +0000 (UTC)
	(envelope-from gallatin@cs.duke.edu)
Received: from grasshopper.cs.duke.edu (grasshopper.cs.duke.edu [152.3.145.30])
	by duke.cs.duke.edu (8.14.0/8.14.0) with ESMTP id l7GJqGux001815
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
	for <freebsd-current@freebsd.org>; Thu, 16 Aug 2007 15:52:16 -0400 (EDT)
Received: (from gallatin@localhost)
	by grasshopper.cs.duke.edu (8.12.9p2/8.12.9/Submit) id l7GJpmsM001920; 
	Thu, 16 Aug 2007 15:51:48 -0400 (EDT) (envelope-from gallatin)
From: Andrew Gallatin <gallatin@cs.duke.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <18116.43755.107638.103132@grasshopper.cs.duke.edu>
Date: Thu, 16 Aug 2007 15:51:48 -0400 (EDT)
To: freebsd-current@freebsd.org
X-Mailer: VM 6.75 under 21.1 (patch 12) "Channel Islands" XEmacs Lucid
Subject: IPSEC disables TSO
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Aug 2007 19:52:17 -0000


When tracking down an mxge 10GbE performance issue, I noticed that
simply compiling IPSEC into the kernel totally destroys 10GbE transmit
performance because it will silently disable TSO.

The problem seems to be at least that the test on line 463 of
tcp_output.c (tp->t_inpcb->inp_sp == NULL) will always be
false.   If I comment that line out, TSO works as normal
(though I have no idea what would happen on an IPSEC connection).

Is there some way to make this not happen?  I believe that the mxge
user simply wanted to run some handful of applications through ipsec
tunnels (perhaps even on a different NIC entirely).

Thanks,

Drew