mirror of
http://git.haproxy.org/git/haproxy.git/
synced 2025-01-10 07:49:54 +00:00
BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess
The streams bookkeeping made in H2 is used for protocol compliance only
but it doesn't consider the number of conn_streams still attached to the
mux. It causes an issue when http-request set-nice rules are applied on
H2 requests processed on a saturated machine. Indeed, in this case, the
requests are accepted and assigned a default nice value of zero. When
they are processed, their nice value changes to a higher one (say 1024).
The response is sent through the H2 mux, which detects the end of stream
and decrements the protocol-level stream count (h2c->nb_streams). The
client may then send a new request. But the conn_stream is still attached
and will require a new call to process_stream() to finish, which is made
through the scheduler. Given that the machine is saturated, it is assumed
that many tasks are present in the scheduler. Thus the closing tasks holding
a higher nice value will pass after the new stream creations. If the client
is fast enough with a low latency link, it may add a lot of new stream
creations before the stream terminations have a chance to disappear due
to their high nice value, resulting in a huge amount of memory being used.
The solution consists in letting a mux always monitor its conn_streams and
refrain from creating new ones when it is full. Here the H2 mux checks the
nb_cs counter and sets a new blocked flag (H2_CF_DEM_TOOMANY) if the limit
was reached, so that the frame parser requests a pause in the new stream
creation, leaving some time for the pending conn_streams to vanish.
Several experiments were made using varying thresholds to see if
overbooking would provide any benefit here but it turned out not to be
the case, so the conn_stream limit remains set to the exact streams
limit. Interestingly various performance measurements showed that the
code tends to be slightly faster now than without the limit, probably
due to the smoother memory usage.
This commit requires previous patch ("MINOR: h2: keep a count of the number
of conn_streams attached to the mux"). It needs to be backported to 1.8.
This commit is contained in:
Willy Tarreau
parent
7ac60e836a
commit
f210191dcd
28
src/mux_h2.c
28
src/mux_h2.c
@ -53,12 +53,13 @@ static struct pool_head *pool_head_h2s;
|
||||
#define H2_CF_DEM_MROOM 0x00000020 // demux blocked on lack of room in mux buffer
|
||||
#define H2_CF_DEM_SALLOC 0x00000040 // demux blocked on lack of stream's request buffer
|
||||
#define H2_CF_DEM_SFULL 0x00000080 // demux blocked on stream request buffer full
|
||||
#define H2_CF_DEM_BLOCK_ANY 0x000000F0 // aggregate of the demux flags above except DALLOC/DFULL
|
||||
#define H2_CF_DEM_TOOMANY 0x00000100 // demux blocked waiting for some conn_streams to leave
|
||||
#define H2_CF_DEM_BLOCK_ANY 0x000001F0 // aggregate of the demux flags above except DALLOC/DFULL
|
||||
|
||||
/* other flags */
|
||||
#define H2_CF_GOAWAY_SENT 0x00000100 // a GOAWAY frame was successfully sent
|
||||
#define H2_CF_GOAWAY_FAILED 0x00000200 // a GOAWAY frame failed to be sent
|
||||
#define H2_CF_WAIT_FOR_HS 0x00000400 // We did check that at least a stream was waiting for handshake
|
||||
#define H2_CF_GOAWAY_SENT 0x00001000 // a GOAWAY frame was successfully sent
|
||||
#define H2_CF_GOAWAY_FAILED 0x00002000 // a GOAWAY frame failed to be sent
|
||||
#define H2_CF_WAIT_FOR_HS 0x00004000 // We did check that at least a stream was waiting for handshake
|
||||
|
||||
|
||||
/* H2 connection state, in h2c->st0 */
|
||||
@ -251,6 +252,12 @@ static inline int h2_recv_allowed(const struct h2c *h2c)
|
||||
return 0;
|
||||
}
|
||||
|
||||
/* returns true if the connection has too many conn_streams attached */
|
||||
static inline int h2_has_too_many_cs(const struct h2c *h2c)
|
||||
{
|
||||
return h2c->nb_cs >= h2_settings_max_concurrent_streams;
|
||||
}
|
||||
|
||||
/* Tries to grab a buffer and to re-enable processing on mux <target>. The h2c
|
||||
* flags are used to figure what buffer was requested. It returns 1 if the
|
||||
* allocation succeeds, in which case the connection is woken up, or 0 if it's
|
||||
@ -639,6 +646,8 @@ static struct h2s *h2c_stream_new(struct h2c *h2c, int id)
|
||||
goto out_free_cs;
|
||||
|
||||
/* OK done, the stream lives its own life now */
|
||||
if (h2_has_too_many_cs(h2c))
|
||||
h2c->flags |= H2_CF_DEM_TOOMANY;
|
||||
return h2s;
|
||||
|
||||
out_free_cs:
|
||||
@ -1545,6 +1554,9 @@ static int h2c_frt_handle_headers(struct h2c *h2c, struct h2s *h2s)
|
||||
if (h2c->dbuf->i < h2c->dfl && h2c->dbuf->i < h2c->dbuf->size)
|
||||
return 0; // incomplete frame
|
||||
|
||||
if (h2c->flags & H2_CF_DEM_TOOMANY)
|
||||
return 0; // too many cs still present
|
||||
|
||||
/* now either the frame is complete or the buffer is complete */
|
||||
if (h2s->st != H2_SS_IDLE) {
|
||||
/* FIXME: stream already exists, this is only allowed for
|
||||
@ -2445,6 +2457,14 @@ static void h2_detach(struct conn_stream *cs)
|
||||
h2c = h2s->h2c;
|
||||
h2s->cs = NULL;
|
||||
h2c->nb_cs--;
|
||||
if (h2c->flags & H2_CF_DEM_TOOMANY &&
|
||||
!h2_has_too_many_cs(h2c)) {
|
||||
h2c->flags &= ~H2_CF_DEM_TOOMANY;
|
||||
if (h2_recv_allowed(h2c)) {
|
||||
__conn_xprt_want_recv(h2c->conn);
|
||||
conn_xprt_want_send(h2c->conn);
|
||||
}
|
||||
}
|
||||
|
||||
/* this stream may be blocked waiting for some data to leave (possibly
|
||||
* an ES or RST frame), so orphan it in this case.
|
||||
|
||||
Loading…
Reference in New Issue
Block a user