src/sys/netinet, branch main

tcp: Fix typo in RFC 6191 sysctl

2026-05-18T15:00:08Z

Fixes: 2af70d7a3849 ("tcp: Make RFC 6191 support configurable") MFC after: 1 week Sponsored by: Klara, Inc. Sponsored by: Modirum MDPay

tcp: Make RFC 6191 support configurable

2026-05-18T14:50:14Z

Add a default-on per-VIMAGE sysctl for RFC 6191 connection recycling. This makes it possible to merge the change to older branches where it can be switched off by default to minimize risk. MFC after: 1 week Sponsored by: Klara, Inc. Sponsored by: Modirum MDPay Reviewed by: pouria, marius.h_lden.org, tuexen Differential Revision: https://reviews.freebsd.org/D57045

igmp: Avoid leaving dangling pointers in the state-change queue

2026-05-12T20:05:19Z

When igmp_v3_merge_state_changes() is iterating over state-change packets, there is a case where it'll free a queued packet but will fail to remove it from the queue. Fix that. Reported by: Yuxiang Yang, Yizhou Zhao, Xuewei Feng, Qi Li, and Ke Xu from Tsinghua University using GLM5.1 from Z.ai Reviewed by: pouria, glebius MFC after: 1 week Differential Revision: https://reviews.freebsd.org/D56947

tests/tcp_hpts_test: Fix more resource leaks

2026-05-12T20:05:18Z

Address leaks that I missed in commit f7bf9fd6199c ("tests/tcp_hpts_test: Fix resource leaks"). Reviewed by: Nick Banks , tuexen MFC after: 1 week Differential Revision: https://reviews.freebsd.org/D56943

fix typo: writting -> writing in sack_filter

2026-04-30T16:29:18Z

Signed-off-by: Felipe Matarazzo Reviewed-by: ngie Pull-Request: https://github.com/freebsd/freebsd-src/pull/2174

fix typo: remove extra 'the' in rack.c comment

2026-04-30T16:29:17Z

Signed-off-by: Felipe Matarazzo Reviewed-by: ngie Pull-Request: https://github.com/freebsd/freebsd-src/pull/2174

fix typo: seperate -> separate in tcp_ratelimit comment

2026-04-30T16:29:17Z

Signed-off-by: Felipe Matarazzo Reviewed-by: ngie Pull-Request: https://github.com/freebsd/freebsd-src/pull/2174

tcp: release nic ktls send tags when entering time wait

2026-04-29T23:35:47Z

When under heavy load or churn, inline ktls offload NICs may run out of hardware resources described by ktls send tags. Rather than waiting for connections to pass through the time_wait state, reclaim the ktls send tags early, at entry to time_wait. By preventing potentially tens or hundreds of thousands of sessions from holding send tags in time_wait, this allows more ktls sessions to be offloaded to hardware. Reviewed by: glebius, kib, nickbanks_netflix.com, rrs, tuexen Sponsored by: Netflix Differential Revision: https://reviews.freebsd.org/D56610

inpcb: allow to specify different sizes for port and load balance hashes

2026-04-29T16:19:14Z

Understand zero size as instruction to not allocate the hash. Do not allocate both hashes for rawip(4). There are no functional changes to TCP or UDP. Reviewed by: markj Differential Revision: https://reviews.freebsd.org/D56705

inpcb: improve some internal function names

2026-04-29T16:19:03Z

The 'hash' subword doesn't bring any additional information. All inpcb lookup functions operate on hashes. For lookup functions that work on either exact hash or wild hash just perform s/hash_//. Rename in_pcblookup_hash() into in_pcblookup_with_lock(), emphasizing its difference to in_pcblookup_smr(). Rename in_pcblookup_hash_locked() to in_pcblookup_internal(), as it doesn't return a locked inpcb and is used only for internal purposes. Note that the IPv6 sibling of this function already lives by name in6_pcblookup_internal(). Some future changes will make such naming more justified. No functional change. Reviewed by: pouria, markj Differential Revision: https://reviews.freebsd.org/D56482