RepoMirrors/haproxy
1
0
Fork 0
mirror of http://git.haproxy.org/git/haproxy.git/ synced 2025-04-09 10:47:34 +00:00
Code Issues Packages Projects Releases Wiki Activity

MINOR: ssl: remove fallback to SSL session private cache if lock init fails.

Browse Source 
Now, haproxy exit an error saying:
Unable to initialize the lock for the shared SSL session cache. You can retry using
the global statement 'tune.ssl.force-private-cache' but it could increase the CPU
usage due to renegotiation if nbproc > 1.
This commit is contained in:
Emeric Brun 2014-05-09 14:01:48 +02:00 committed by Willy Tarreau
parent 8dc6039807
commit 93ee249fd1
1 changed files with 5 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
src/cfgparse.c
View File

@ -6765,16 +6765,12 @@ out_uri_auth_compat:
alloc_ctx = shared_context_init(global.tune.sslcachesize, (!global.tune.sslprivatecache && (global.nbproc > 1)) ? 1 : 0); alloc_ctx = shared_context_init(global.tune.sslcachesize, (!global.tune.sslprivatecache && (global.nbproc > 1)) ? 1 : 0);
if (alloc_ctx < 0) { if (alloc_ctx < 0) {
if (alloc_ctx == SHCTX_E_INIT_LOCK) { if (alloc_ctx == SHCTX_E_INIT_LOCK)
Warning("Unable to init lock for the shared SSL session cache. Falling back to private cache.\n"); Alert("Unable to initialize the lock for the shared SSL session cache. You can retry using the global statement 'tune.ssl.force-private-cache' but it could increase CPU usage due to renegotiations if nbproc > 1.\n");
alloc_ctx = shared_context_init(global.tune.sslcachesize, 0); else
}
if (alloc_ctx < 0) {
Alert("Unable to allocate SSL session cache.\n"); Alert("Unable to allocate SSL session cache.\n");
cfgerr++; cfgerr++;
continue; continue;
}
} }
/* initialize all certificate contexts */ /* initialize all certificate contexts */