upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-02-28 20:41:18 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
bind9/lib/isc/netmgr
History
Artem Boldariev 590e8e0b86 Make max number of HTTP/2 streams configurable 
This commit makes number of concurrent HTTP/2 streams per connection
configurable as a mean to fight DDoS attacks. As soon as the limit is
reached, BIND terminates the whole session.

The commit adds a global configuration
option (http-streams-per-connection) which can be overridden in an
http <name> {...} statement like follows:

http local-http-server {
    ...
    streams-per-connection 100;
    ...
};

For now the default value is 100, which should be enough (e.g. NGINX
uses 128, but it is a full-featured WEB-server). When using lower
numbers (e.g. ~70), it is possible to hit the limit with
e.g. flamethrower.
2021-07-16 11:50:22 +03:00
..
http.c Make max number of HTTP/2 streams configurable 2021-07-16 11:50:22 +03:00
netmgr-int.h Make max number of HTTP/2 streams configurable 2021-07-16 11:50:22 +03:00
netmgr.c Disable setting the thread affinity 2021-07-13 14:48:29 +02:00
tcp.c Completely remove BIND 9 Windows support 2021-06-09 14:35:14 +02:00
tcpdns.c Replace netmgr per-protocol sequential function with a common one 2021-06-22 17:21:44 +03:00
tlsdns.c Replace netmgr per-protocol sequential function with a common one 2021-06-22 17:21:44 +03:00
tlsstream.c Set sock->iface and sock->peer properly for layered connection types 2021-06-14 11:37:36 +03:00
udp.c Completely remove BIND 9 Windows support 2021-06-09 14:35:14 +02:00
uv-compat.c Completely remove BIND 9 Windows support 2021-06-09 14:35:14 +02:00
uv-compat.h Use UV_VERSION_HEX to decide whether we need libuv shim functions 2021-05-31 14:52:05 +02:00
uverr2result.c Handle UDP send errors when sending DNS message larger than MTU 2021-06-23 17:41:34 +02:00