projects / exim.git / blame
| Commit | Line | Data |
|---|---|---|
| a2673768 JH |
1 | # TCP Fast Open |
| 2 | # | |
| 3 | # Linux: | |
| 4 | # Both server and client-side TFO support must be enabled in the | |
| 5 | # kernel, 'sudo sh -c "echo 3 > /proc/sys/net/ipv4/tcp_fastopen"'. | |
| 6 | # | |
| 7 | # A packet capture on the loopback interface will show the TFO | |
| 8 | # option on the SYN, but the fast-output SMTP banner will not | |
| 9 | # be seen unless you also deliberately emulate a long path: | |
| 8255135b | 10 | # 'sudo tc qdisc add dev lo root netem delay 50ms' |
| 11a5264b | 11 | # You'll need iproute-tc installed, for the tc command. |
| 1ccd5f67 JH |
12 | # You'll need kernel-modules-extra installed, or you get |
| 13 | # an unhelpful error from RTNETLINK. | |
| 14 | # To tidy up: 'sudo tc qdisc delete dev lo root' | |
| a2673768 | 15 | # |
| b536a578 JH |
16 | # MacOS: |
| 17 | # The kernel seems to have TFO enabled both ways as default. | |
| 18 | # There is a net.inet.tcp.clear_tfocache parameter | |
| 19 | ## sysctl -w foo-val | |
| 20 | # | |
| 21 | # For network delays there is something called 'Network Link Conditioner' | |
| 22 | # which might do the job. But how to manipulate it? | |
| 23 | # | |
| 24 | # | |
| 8255135b JH |
25 | sudo perl |
| 26 | system ("tc qdisc add dev lo root netem delay 50ms"); | |
| 27 | **** | |
| 28 | # | |
| 38da9088 JH |
29 | # |
| 30 | # Disable the TFO blackhole detection, as we seem to be running foul of it. | |
| 31 | # If bitten, we see the expected EINPROGRESS for sendto, yet no TFO cookie | |
| 32 | # option on the SYN. | |
| 33 | # | |
| 34 | sudo perl | |
| 35 | system ("echo 0 > /proc/sys/net/ipv4/tcp_fastopen_blackhole_timeout_sec"); | |
| 36 | **** | |
| 37 | # | |
| a2673768 JH |
38 | # First time runs will see a TFO request option only; subsequent |
| 39 | # ones should see the TFO cookie and fast-output SMTP banner | |
| 40 | # (currently on a separate packet after the server SYN,ACK but before | |
| 41 | # the client ACK). | |
| 42 | # | |
| b536a578 JH |
43 | # The client log => line should have a "TFO" element. |
| 44 | # The server log <= line for a@test.ex should not. | |
| ac0dcd3f | 45 | # |
| b536a578 | 46 | # First clear any previously-obtained cookie: |
| 8255135b JH |
47 | sudo perl |
| 48 | system ("ip tcp_metrics delete 127.0.0.1"); | |
| 49 | **** | |
| 50 | # | |
| a2673768 JH |
51 | # |
| 52 | # | |
| 53 | # FreeBSD: it looks like you have to compile a custom kernel, with | |
| 54 | # 'options TCP_RFC7413' in the config. Also set | |
| 55 | # 'net.inet.tcp.fastopen.enabled=1' in /etc/sysctl.conf | |
| 56 | # Untested. | |
| 57 | # | |
| 58 | exim -DSERVER=server -bd -oX PORT_D | |
| 59 | **** | |
| ac0dcd3f | 60 | # |
| a2673768 JH |
61 | exim a@test.ex |
| 62 | Testing | |
| 63 | **** | |
| 64 | sleep 3 | |
| ac0dcd3f | 65 | # |
| b536a578 JH |
66 | # The server log <= line for b@test.ex should have a "TFO" element, but |
| 67 | # this will only be obtained when the above delay is inserted into the | |
| 68 | # loopback net path. | |
| 69 | # | |
| a2673768 JH |
70 | exim b@test.ex |
| 71 | Testing | |
| 72 | **** | |
| 73 | sleep 3 | |
| ac0dcd3f | 74 | # |
| 8255135b JH |
75 | # |
| 76 | sudo perl | |
| 77 | system ("tc qdisc delete dev lo root"); | |
| 38da9088 | 78 | system ("echo 3600 > /proc/sys/net/ipv4/tcp_fastopen_blackhole_timeout_sec"); |
| 8255135b JH |
79 | **** |
| 80 | # | |
| a2673768 JH |
81 | killdaemon |
| 82 | no_msglog_check |