X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=elogind.git;a=blobdiff_plain;f=man%2Fsystemd.socket.xml;h=ce04b0b4c613932637c8b0706a611b929203005f;hp=b3607a8b63fb9f38c93239d9f626d6e114f58b3f;hb=14f27b4e3b009d10bb9a3b43b74585c73a7c7626;hpb=3900e5fdff688dc3c273f177d9d913b7389d5561
diff --git a/man/systemd.socket.xml b/man/systemd.socket.xml
index b3607a8b6..ce04b0b4c 100644
--- a/man/systemd.socket.xml
+++ b/man/systemd.socket.xml
@@ -188,7 +188,7 @@
replaced with a
NUL character
before binding. For details, see
- unix7.
+ unix7.
If the address string is a
single number, it is read as port
@@ -376,7 +376,7 @@
SocketGroup=Takes a UNIX
- user/group name. When specified
+ user/group name. When specified,
all AF_UNIX sockets and FIFO nodes in
the file system are owned by the
specified user and group. If unset
@@ -487,6 +487,53 @@
.
+
+ KeepAliveTimeSec=
+ Takes time (in seconds) as argument . The connection needs to remain
+ idle before TCP starts sending keepalive probes. This controls the TCP_KEEPIDLE
+ socket option (see
+ socket7
+ and the TCP
+ Keepalive HOWTO for details.)
+ Defaults value is 7200 seconds (2 hours).
+
+
+
+ KeepAliveIntervalSec=
+ Takes time (in seconds) as argument between individual keepalive probes,
+ if the socket option SO_KEEPALIVE has been set on this socket seconds as argument.
+ This controls the TCP_KEEPINTVL socket option (see
+ socket7
+ and the TCP
+ Keepalive HOWTO for details.)
+ Defaults value is 75 seconds.
+
+
+
+ KeepAliveProbes=
+ Takes integer as argument. It's the number of unacknowledged probes to
+ send before considering the connection dead and notifying the application layer.
+ This controls the TCP_KEEPCNT socket option (see
+ socket7
+ and the TCP
+ Keepalive HOWTO for details.)
+ Defaults value is 9.
+
+
+
+ NoDelay=
+ Takes a boolean
+ argument. TCP Nagle's algorithm works by combining a number of
+ small outgoing messages, and sending them all at once.
+ This controls the TCP_NODELAY socket option (see
+ tcp7
+ Defaults to
+ .
+
+
Priority=Takes an integer
@@ -498,6 +545,47 @@
for details.).
+
+ DeferAcceptSec=
+
+ Takes time (in
+ seconds) as argument. If set, the
+ listening process will be awakened
+ only when data arrives on the socket,
+ and not immediately when connection is
+ established. When this option is set,
+ the
+ TCP_DEFER_ACCEPT
+ socket option will be used (see
+ tcp7),
+ and the kernel will ignore initial ACK
+ packets without any data. The argument
+ specifies the approximate amount of
+ time the kernel should wait for
+ incoming data before falling back to
+ the normal behaviour of honouring
+ empty ACK packets. This option is
+ beneficial for protocols where the
+ client sends the data first (e.g.
+ HTTP, in contrast to SMTP), because
+ the server process will not be woken
+ up unnecessarily before it can take
+ any action.
+
+
+ If the client also uses the
+ TCP_DEFER_ACCEPT
+ option, the latency of the initial
+ connection may be reduced, because the
+ kernel will send data in the final
+ packet establishing the connection
+ (the third packet in the "three-way
+ handshake").
+
+ Disabled by default.
+
+
+
ReceiveBuffer=SendBuffer=
@@ -587,6 +675,32 @@
for details.
+
+ SELinuxContextFromNet=
+ Takes a boolean
+ argument. When true systemd will attempt
+ to figure out the SELinux label used
+ for the instantiated service from the
+ information handed by the peer over the
+ network. Note that only the security
+ level is used from the information
+ provided by the peer. Other parts of
+ the resulting SELinux context originate
+ from either the target binary that is
+ effectively triggered by socket unit
+ are taken from the value of the
+ SELinuxContext=
+ option.This configuration option only
+ affects sockets with
+ Accept= mode set to
+ true. Also note that
+ this option is useful only when
+ MLS/MCS SELinux policy is
+ deployed. Defaults to
+ false.
+
+
+
PipeSize=Takes a size in
@@ -722,16 +836,18 @@
finish. If a command does not exit
within the configured time, the socket
will be considered failed and be shut
- down again. All commands still running,
+ down again. All commands still running
will be terminated forcibly via
SIGTERM, and after another delay of
this time with SIGKILL. (See
in systemd.kill5.)
Takes a unit-less value in seconds, or
a time span value such as "5min
- 20s". Pass 0 to disable the timeout
- logic. Defaults to TimeoutStartSec= from the
- manager configuration file.
+ 20s". Pass 0 to disable the timeout
+ logic. Defaults to DefaultTimeoutStartSec= from the
+ manager configuration file
+ (see systemd-system.conf5).
+
@@ -751,14 +867,14 @@
RemoveOnStop=Takes a boolean
- argument. If enabled any file nodes
+ argument. If enabled, any file nodes
created by this socket unit are
removed when it is stopped. This
applies to AF_UNIX sockets in the file
- system, POSIX message queues as well
- as FIFOs, as well as any symlinks to
+ system, POSIX message queues, FIFOs,
+ as well as any symlinks to
them configured with
- Symlinks=. Normally
+ Symlinks=. Normally,
it should not be necessary to use this
option, and is not recommended as
services might continue to run after
@@ -775,7 +891,7 @@
system paths. The specified paths will
be created as symlinks to the AF_UNIX
socket path or FIFO path of this
- socket unit. If this setting is used
+ socket unit. If this setting is used,
only one AF_UNIX socket in the file
system or one FIFO may be configured
for the socket unit. Use this option
@@ -799,7 +915,7 @@
See Alsosystemd1,
- systemctl8,
+ systemctl1,
systemd.unit5,
systemd.exec5,
systemd.kill5,