Date: Wed, 31 May 2017 15:12:08 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-net@FreeBSD.org Subject: [Bug 219655] TCP Connection Limit Error - sonewconn: Listen queue overflow Message-ID: <bug-219655-2472-tHZ75mfo3N@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-219655-2472@https.bugs.freebsd.org/bugzilla/> References: <bug-219655-2472@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219655 --- Comment #13 from Eugene Grosbein <eugen@freebsd.org> --- (In reply to Bjoern A. Zeeb from comment #12) These variables are global currently but this does not mean the limits they impose are "global" in any way: static u_int somaxconn is just default for per-socket backlog limit so->so_qlimit (struct socket *so) and this change makes it possible to assign different defaults per-jail. Yes, increase of such limit allows jailed root to get more space in the queue of not accepted yet sockets but theres is already plenty ways to consume such resources (f.e. by creating listening socket and making tons of local connections). Perhaps, this sysctl should be made read-only for jailed root, if possible. V_numopensockets is purely informational. -- You are receiving this mail because: You are the assignee for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-219655-2472-tHZ75mfo3N>