[Bug 219655] TCP Connection Limit Error - sonewconn: Listen queue overflow
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Wed May 31 15:12:09 UTC 2017
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219655
--- Comment #13 from Eugene Grosbein <eugen at freebsd.org> ---
(In reply to Bjoern A. Zeeb from comment #12)
These variables are global currently but this does not mean the limits they
impose are "global" in any way: static u_int somaxconn is just default for
per-socket backlog limit so->so_qlimit (struct socket *so) and this change
makes it possible to assign different defaults per-jail.
Yes, increase of such limit allows jailed root to get more space in the queue
of not accepted yet sockets but theres is already plenty ways to consume such
resources (f.e. by creating listening socket and making tons of local
connections). Perhaps, this sysctl should be made read-only for jailed root, if
possible.
V_numopensockets is purely informational.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-net
mailing list