1.\" Copyright (c) 1993 2.\" The Regents of the University of California. All rights reserved. 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 3. Neither the name of the University nor the names of its contributors 13.\" may be used to endorse or promote products derived from this software 14.\" without specific prior written permission. 15.\" 16.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 17.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 18.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 19.\" ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 20.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 21.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 22.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 23.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 24.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 25.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 26.\" SUCH DAMAGE. 27.\" 28.\" From: @(#)sysctl.8 8.1 (Berkeley) 6/6/93 29.\" $FreeBSD$ 30.\" 31.Dd March 20, 2022 32.Dt SYSCTL 8 33.Os 34.Sh NAME 35.Nm sysctl 36.Nd get or set kernel state 37.Sh SYNOPSIS 38.Nm 39.Op Fl bdehiNnoTtqWx 40.Op Fl B Ar bufsize 41.Op Fl f Ar filename 42.Ar name Ns Op = Ns Ar value Ns Op , Ns Ar value 43.Ar ... 44.Nm 45.Op Fl bdehNnoTtqWx 46.Op Fl B Ar bufsize 47.Fl a 48.Sh DESCRIPTION 49The 50.Nm 51utility retrieves kernel state and allows processes with appropriate 52privilege to set kernel state. 53The state to be retrieved or set is described using a 54.Dq Management Information Base 55.Pq Dq MIB 56style name, described as a dotted set of 57components. 58.Pp 59The following options are available: 60.Bl -tag -width indent 61.It Fl A 62Equivalent to 63.Fl o a 64(for compatibility). 65.It Fl a 66List all the currently available values except for those which are 67opaque or excluded from listing via the 68.Dv CTLFLAG_SKIP 69flag. 70This option is ignored if one or more variable names are specified on 71the command line. 72.It Fl b 73Force the value of the variable(s) to be output in raw, binary format. 74No names are printed and no terminating newlines are output. 75This is mostly useful with a single variable. 76.It Fl B Ar bufsize 77Set the buffer size to read from the 78.Nm 79to 80.Ar bufsize . 81This is necessary for a 82.Nm 83that has variable length, and the probe value of 0 is a valid length, such as 84.Va kern.arandom . 85.It Fl d 86Print the description of the variable instead of its value. 87.It Fl e 88Separate the name and the value of the variable(s) with 89.Ql = . 90This is useful for producing output which can be fed back to the 91.Nm 92utility. 93This option is ignored if either 94.Fl N 95or 96.Fl n 97is specified, or a variable is being set. 98.It Fl f Ar filename 99Specify a file which contains a pair of name and value in each line. 100.Nm 101reads and processes the specified file first and then processes the name 102and value pairs in the command line argument. 103.It Fl h 104Format output for human, rather than machine, readability. 105.It Fl i 106Ignore unknown OIDs. 107The purpose is to make use of 108.Nm 109for collecting data from a variety of machines (not all of which 110are necessarily running exactly the same software) easier. 111.It Fl N 112Show only variable names, not their values. 113This is particularly useful with shells that offer programmable 114completion. 115To enable completion of variable names in 116.Xr zsh 1 Pq Pa ports/shells/zsh , 117use the following code: 118.Bd -literal -offset indent 119listsysctls () { set -A reply $(sysctl -AN ${1%.*}) } 120compctl -K listsysctls sysctl 121.Ed 122.Pp 123To enable completion of variable names in 124.Xr tcsh 1 , 125use: 126.Pp 127.Dl "complete sysctl 'n/*/`sysctl -Na`/'" 128.It Fl n 129Do not show variable names. 130This option is useful for setting shell variables. 131For instance, to save the pagesize in variable 132.Va psize , 133use: 134.Pp 135.Dl "set psize=`sysctl -n hw.pagesize`" 136.It Fl o 137Show opaque variables (which are normally suppressed). 138The format and length are printed, as well as a hex dump of the first 139sixteen bytes of the value. 140.It Fl q 141Suppress some warnings generated by 142.Nm 143to standard error. 144.It Fl T 145Display only variables that are settable via loader (CTLFLAG_TUN). 146.It Fl t 147Print the type of the variable. 148.It Fl W 149Display only writable variables that are not statistical. 150Useful for determining the set of runtime tunable sysctls. 151.It Fl X 152Equivalent to 153.Fl x a 154(for compatibility). 155.It Fl x 156As 157.Fl o , 158but prints a hex dump of the entire value instead of just the first 159few bytes. 160.El 161.Pp 162The information available from 163.Nm 164consists of integers, strings, and opaque types. 165The 166.Nm 167utility 168only knows about a couple of opaque types, and will resort to hexdumps 169for the rest. 170The opaque information is much more useful if retrieved by special 171purpose programs such as 172.Xr ps 1 , 173.Xr systat 1 , 174and 175.Xr netstat 1 . 176.Pp 177Some of the variables which cannot be modified during normal system 178operation can be initialized via 179.Xr loader 8 180tunables. 181This can for example be done by setting them in 182.Xr loader.conf 5 . 183Please refer to 184.Xr loader.conf 5 185for more information on which tunables are available and how to set them. 186.Pp 187The string and integer information is summarized below. 188For a detailed description of these variable see 189.Xr sysctl 3 . 190.Pp 191The changeable column indicates whether a process with appropriate 192privilege can change the value. 193String and integer values can be set using 194.Nm . 195.Bl -column security.bsd.unprivileged_read_msgbuf integerxxx 196.It Sy "Name Type Changeable" 197.It "kern.ostype string no" 198.It "kern.osrelease string no" 199.It "kern.osrevision integer no" 200.It "kern.version string no" 201.It "kern.maxvnodes integer yes" 202.It "kern.maxproc integer no" 203.It "kern.maxprocperuid integer yes" 204.It "kern.maxfiles integer yes" 205.It "kern.maxfilesperproc integer yes" 206.It "kern.argmax integer no" 207.It "kern.securelevel integer raise only" 208.It "kern.hostname string yes" 209.It "kern.hostid integer yes" 210.It "kern.clockrate struct no" 211.It "kern.posix1version integer no" 212.It "kern.ngroups integer no" 213.It "kern.job_control integer no" 214.It "kern.saved_ids integer no" 215.It "kern.boottime struct no" 216.It "kern.domainname string yes" 217.It "kern.filedelay integer yes" 218.It "kern.dirdelay integer yes" 219.It "kern.metadelay integer yes" 220.It "kern.osreldate integer no" 221.It "kern.bootfile string yes" 222.It "kern.corefile string yes" 223.It "kern.logsigexit integer yes" 224.It "security.bsd.suser_enabled integer yes" 225.It "security.bsd.see_other_uids integer yes" 226.It "security.bsd.unprivileged_proc_debug integer yes" 227.It "security.bsd.unprivileged_read_msgbuf integer yes" 228.It "vm.loadavg struct no" 229.It "hw.machine string no" 230.It "hw.model string no" 231.It "hw.ncpu integer no" 232.It "hw.byteorder integer no" 233.It "hw.physmem integer no" 234.It "hw.usermem integer no" 235.It "hw.pagesize integer no" 236.It "hw.floatingpoint integer no" 237.It "hw.machine_arch string no" 238.It "hw.realmem integer no" 239.It "machdep.adjkerntz integer yes" 240.It "machdep.disable_rtc_set integer yes" 241.It "machdep.guessed_bootdev string no" 242.It "user.cs_path string no" 243.It "user.bc_base_max integer no" 244.It "user.bc_dim_max integer no" 245.It "user.bc_scale_max integer no" 246.It "user.bc_string_max integer no" 247.It "user.coll_weights_max integer no" 248.It "user.expr_nest_max integer no" 249.It "user.line_max integer no" 250.It "user.re_dup_max integer no" 251.It "user.posix2_version integer no" 252.It "user.posix2_c_bind integer no" 253.It "user.posix2_c_dev integer no" 254.It "user.posix2_char_term integer no" 255.It "user.posix2_fort_dev integer no" 256.It "user.posix2_fort_run integer no" 257.It "user.posix2_localedef integer no" 258.It "user.posix2_sw_dev integer no" 259.It "user.posix2_upe integer no" 260.It "user.stream_max integer no" 261.It "user.tzname_max integer no" 262.It "user.localbase string no" 263.El 264.Sh FILES 265.Bl -tag -width ".In netinet/icmp_var.h" -compact 266.It In sys/sysctl.h 267definitions for top level identifiers, second level kernel and hardware 268identifiers, and user level identifiers 269.It In sys/socket.h 270definitions for second level network identifiers 271.It In sys/gmon.h 272definitions for third level profiling identifiers 273.It In vm/vm_param.h 274definitions for second level virtual memory identifiers 275.It In netinet/in.h 276definitions for third level Internet identifiers and 277fourth level IP identifiers 278.It In netinet/icmp_var.h 279definitions for fourth level ICMP identifiers 280.It In netinet/udp_var.h 281definitions for fourth level UDP identifiers 282.El 283.Sh EXIT STATUS 284.Ex -std 285.Sh EXAMPLES 286For example, to retrieve the maximum number of processes allowed 287in the system, one would use the following request: 288.Pp 289.Dl "sysctl kern.maxproc" 290.Pp 291To set the maximum number of processes allowed 292per uid to 1000, one would use the following request: 293.Pp 294.Dl "sysctl kern.maxprocperuid=1000" 295.Pp 296Information about the system clock rate may be obtained with: 297.Pp 298.Dl "sysctl kern.clockrate" 299.Pp 300Information about the load average history may be obtained with: 301.Pp 302.Dl "sysctl vm.loadavg" 303.Pp 304More variables than these exist, and the best and likely only place 305to search for their deeper meaning is undoubtedly the source where 306they are defined. 307.Sh COMPATIBILITY 308The 309.Fl w 310option has been deprecated and is silently ignored. 311.Sh SEE ALSO 312.Xr sysctl 3 , 313.Xr loader.conf 5 , 314.Xr sysctl.conf 5 , 315.Xr loader 8 316.Sh HISTORY 317A 318.Nm 319utility first appeared in 320.Bx 4.4 . 321.Pp 322In 323.Fx 2.2 , 324.Nm 325was significantly remodeled. 326.Sh BUGS 327The 328.Nm 329utility presently exploits an undocumented interface to the kernel 330sysctl facility to traverse the sysctl tree and to retrieve format 331and name information. 332This correct interface is being thought about for the time being. 333