2007/399 inetd backlog SMF property: connection_backlog
Liane Praza
lianep at eng.sun.com
Wed Jul 18 09:06:47 PDT 2007
Gary Winiger writes:
> > The default value is unchanged by this proposal and continues to be
> > 10. Admins can customize the value through the standard inetadm(1M)
> > interface.
>
> This seems like an opportune time to upgrade this legacy service
> manifest to the SMF policy by including value and action authorizations
> as well as either creating a new Rights profile to add to Network
> Management, or by adding the solaris.smf.manage/value authorizations
> there.
Gary and the project team has agreed that exactly this will be done as
part of this case. I've included an updated spec below.
As we agreed in last week's meeting, this closes the last remaining
issue, so I'll be marking this case as approved.
liane
---
1. Project Description:
We plan to introduce an interface to inetd, to change the default
connection backlog queue size. This interface would be an SMF
property which can be changed via SMF commands.
Till Solaris 9, there was an interface to inetd through which we
could specify the size of the backlog queue maintained by inetd. The
option was -l <queue length> as specified in "Inetd Backlog Flag"
(PSARC/1995/319) as public.
In Solaris 10, this option was erroneously removed and has been
requested by customers. We intend to re-introduce the option
as a committed inetd SMF property: connection_backlog. This will
continue to control the number of incoming connection requests that
are temporarily queued at the server end point and later transformed
into connections(if accepted by the server applications) on a seperate
end point.
The default value is unchanged by this proposal and continues to be
10. Admins can customize the value through the standard inetadm(1M)
interface.
In addition, inetd will be brought into compliance with the RBAC
portion of the SMF policy by this case. We'll introduce the inetd
Management rights profile, include that in the Network Management
profile, and add solaris.smf.manage.inetd and solaris.smf.value.inetd
authorizations.
2. Interface table
Property Stability
-------- ---------
connection_backlog Committed
Action Authorization: solaris.smf.manage.inetd
Value Authorization: solaris.smf.value.inetd
Rights Profile: inetd Management
3. Doc Impact:
Manpage of inetd and inetadm would be modified to add this new
interface change:
inetd(1M) manpage diffs
---------------------------------------------------------------------
--- inetd.man Wed Jul 4 12:07:29 2007
+++ inetd.man_new Wed Jul 4 12:09:44 2007
@@ -496,9 +496,13 @@
values 0 and -1 specify that copies lim-
iting is disabled.
+ connection_backlog The backlog queue size. It represents a
+ bound on the number of incoming client
+ requests that are queued at the listening
+ endpoints for servers.
+
name Can be set to one of the following
values:
@@ -706,6 +710,7 @@
bind_fail_interval -1
bind_fail_max -1
con_rate_offline -1
+ connection_backlog 10
failrate_count 40
failrate_time 60
inherit_env true
---------------------------------------------------------------------
inetadm(1M) manpage diffs
----------------------------------------------------------------------
--- inetadm.man Wed Jul 4 11:58:20 2007
+++ inetadm.newman Wed Jul 4 11:58:06 2007
@@ -234,6 +234,7 @@
default inherit_env=TRUE
default tcp_trace=FALSE
default tcp_wrappers=FALSE
+ default connection_backlog=10
Example 2 Displaying Default Properties
@@ -255,6 +256,7 @@
inherit_env=TRUE
tcp_trace=FALSE
tcp_wrappers=FALSE
+ connection_backlog=10
@@ -301,6 +303,7 @@
default inherit_env=TRUE
tcp_trace=TRUE
default tcp_wrappers=FALSE
+ default connection_backlog=10
---------------------------------------------------------------------
4. References:
PSARC case: PSARC/1995/319
More information about the opensolaris-arc
mailing list