On Tue, Jul 19, 2016 at 10:40:14PM +0200, Alexander Bluhm wrote: > On Tue, Jul 19, 2016 at 09:19:25PM +0100, Jason McIntyre wrote: > > On Tue, Jul 19, 2016 at 10:09:47PM +0200, Alexander Bluhm wrote: > > > On Tue, Jul 19, 2016 at 08:55:58PM +0200, Joerg Jung wrote: > > > > Please, also document it, at least in sysctl(8). > > Next try, with input from jmc@ > > bluhm > > Index: lib/libc/gen/sysctl.3 > =================================================================== > RCS file: /data/mirror/openbsd/cvs/src/lib/libc/gen/sysctl.3,v > retrieving revision 1.266 > diff -u -p -r1.266 sysctl.3 > --- lib/libc/gen/sysctl.3 14 Jul 2016 17:34:06 -0000 1.266 > +++ lib/libc/gen/sysctl.3 19 Jul 2016 20:36:19 -0000 > @@ -1188,6 +1188,7 @@ The currently defined protocols and name > .It tcp Ta stats Ta structure Ta no > .It tcp Ta synbucketlimit Ta integer Ta yes > .It tcp Ta syncachelimit Ta integer Ta yes > +.It tcp Ta synhashsize Ta integer Ta yes > .It tcp Ta synuselimit Ta integer Ta yes > .It udp Ta baddynamic Ta array Ta yes > .It udp Ta checksum Ta integer Ta yes > @@ -1617,6 +1618,10 @@ Returns the TCP statistics in a struct t > The maximum number of entries allowed per hash bucket in the TCP SYN cache. > .It Li tcp.syncachelimit > The maximum number of entries allowed in the TCP SYN cache. > +.It Li tcp.synhashsize > +The number of buckets in the TCP SYN cache hash array. > +After the value is set, the actual size changes when the alternative > +SYN cache becomes empty and both SYN caches are swapped. > .It Li tcp.synuselimit > The minimum number of times the hash function for the TCP SYN cache is used > before it is reseeded. > Index: sbin/sysctl/sysctl.8 > =================================================================== > RCS file: /data/mirror/openbsd/cvs/src/sbin/sysctl/sysctl.8,v > retrieving revision 1.202 > diff -u -p -r1.202 sysctl.8 > --- sbin/sysctl/sysctl.8 5 Jul 2016 17:41:59 -0000 1.202 > +++ sbin/sysctl/sysctl.8 19 Jul 2016 20:31:39 -0000 > @@ -264,8 +264,9 @@ and a few require a kernel compiled with > .It net.inet.tcp.rstppslimit Ta integer Ta yes > .It net.inet.tcp.ackonpush Ta integer Ta yes > .It net.inet.tcp.ecn Ta integer Ta yes > -.It net.inet.tcp.syncachelimit Ta integer Ta yes > .It net.inet.tcp.synbucketlimit Ta integer Ta yes > +.It net.inet.tcp.syncachelimit Ta integer Ta yes > +.It net.inet.tcp.synhashsize Ta integer Ta yes > .It net.inet.tcp.synuselimit Ta integer Ta yes > .It net.inet.tcp.rfc3390 Ta integer Ta yes > .It net.inet.tcp.reasslimit Ta integer Ta yes >
Reads OK. I would love to actually reduce the syncache knobs to one or two and have the kernel select the other two values based on the first two. As in keep synuselimit and syncachelimit and ditch synbucketlimit and synhashsize. I always have to look up the code to make usefull decisions about these values. -- :wq Claudio
