RepoMirrors/haproxy
1
0
Fork 0
mirror of http://git.haproxy.org/git/haproxy.git/ synced 2025-01-21 05:00:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

MEDIUM: config: support per-listener backlog and maxconn

Browse Source 
With SSL, connections are much more expensive, so it is important to be
able to limit concurrent connections per listener in order to limit the
memory usage.
This commit is contained in:
Willy Tarreau 2012-09-06 11:10:55 +02:00
parent 269ab318ef
commit 32368ceba4
2 changed files with 69 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
doc/configuration.txt
View File

@ -1471,11 +1471,12 @@ balance url_param <param> [check_post [<max_wait>]]
bind [<address>]:<port_range> [, ...]
bind [<address>]:<port_range> [, ...] interface <interface>
bind [<address>]:<port_range> [, ...] mss <maxseg>
bind [<address>]:<port_range> [, ...] backlog <backlog>
bind [<address>]:<port_range> [, ...] maxconn <maxconn>
bind [<address>]:<port_range> [, ...] transparent
bind [<address>]:<port_range> [, ...] id <id>
bind [<address>]:<port_range> [, ...] name <name>
bind [<address>]:<port_range> [, ...] defer-accept
bind [<address>]:<port_range> [, ...] accept-proxy
bind /<path> [, ...]
bind /<path> [, ...] mode <mode>
bind /<path> [, ...] [ user <user> | uid <uid> ]
@ -1545,6 +1546,17 @@ bind /<path> [, ...] [ group <user> | gid <gid> ]
connection's advertised MSS for outgoing segments. This
parameter is only compatible with TCP sockets.
<backlog> sets the socket's backlog to this value. If unspecified, the
frontend's backlog is used instead.
<maxconn> limits the socket to this number of concurrent connections.
Extra connections will remain in the system's backlog until a
connection is released. If unspecified, the limit will be the
same as the frontend's maxconn. Note that in case of port
ranges, the same value will be applied to each socket. This
setting enables different limitations on expensive sockets,
for instance SSL entries which may easily eat all memory.
<id> is a persistent value for socket ID. Must be positive and
unique in the proxy. An unused value will automatically be
assigned if unset. Can only be used when defining only a

58
src/cfgparse.c
View File

@ -1807,6 +1807,58 @@ int cfg_parse_listen(const char *file, int linenum, char **args, int kwm)
#endif
}
if (!strcmp(args[cur_arg], "maxconn")) {
struct listener *l;
int val;
if (!*args[cur_arg + 1]) {
Alert("parsing [%s:%d] : '%s' : missing maxconn value.\n",
file, linenum, args[0]);
err_code |= ERR_ALERT | ERR_FATAL;
goto out;
}
val = atol(args[cur_arg + 1]);
if (val <= 0) {
Alert("parsing [%s:%d] : '%s' : invalid maxconn value %d, must be > 0.\n",
file, linenum, args[0], val);
err_code |= ERR_ALERT | ERR_FATAL;
goto out;
}
for (l = curproxy->listen; l != last_listen; l = l->next)
l->maxconn = val;
cur_arg += 2;
continue;
}
if (!strcmp(args[cur_arg], "backlog")) {
struct listener *l;
int val;
if (!*args[cur_arg + 1]) {
Alert("parsing [%s:%d] : '%s' : missing backlog value.\n",
file, linenum, args[0]);
err_code |= ERR_ALERT | ERR_FATAL;
goto out;
}
val = atol(args[cur_arg + 1]);
if (val <= 0) {
Alert("parsing [%s:%d] : '%s' : invalid backlog value %d, must be > 0.\n",
file, linenum, args[0], val);
err_code |= ERR_ALERT | ERR_FATAL;
goto out;
}
for (l = curproxy->listen; l != last_listen; l = l->next)
l->backlog = val;
cur_arg += 2;
continue;
}
if (!strcmp(args[cur_arg], "ssl")) { /* use ssl certificate */
#ifdef USE_OPENSSL
struct listener *l;
@ -6888,8 +6940,10 @@ out_uri_auth_compat:
#endif /* USE_OPENSSL */
if (curproxy->options & PR_O_TCP_NOLING)
listener->options |= LI_O_NOLINGER;
listener->maxconn = curproxy->maxconn;
listener->backlog = curproxy->backlog;
if (!listener->maxconn)
listener->maxconn = curproxy->maxconn;
if (!listener->backlog)
listener->backlog = curproxy->backlog;
listener->timeout = &curproxy->timeout.client;
listener->accept = session_accept;
listener->frontend = curproxy;