2006-06-25 20:48:02 -04:00
/*
* Health - checks functions .
*
2009-03-08 04:38:41 -04:00
* Copyright 2000 - 2009 Willy Tarreau < w @ 1 wt . eu >
2009-09-23 16:09:24 -04:00
* Copyright 2007 - 2009 Krzysztof Piotr Oledzki < ole @ ans . pl >
2006-06-25 20:48:02 -04:00
*
* This program is free software ; you can redistribute it and / or
* modify it under the terms of the GNU General Public License
* as published by the Free Software Foundation ; either version
* 2 of the License , or ( at your option ) any later version .
*
*/
2008-01-18 06:18:15 -05:00
# include <assert.h>
2009-09-23 16:09:24 -04:00
# include <ctype.h>
2006-06-25 20:48:02 -04:00
# include <errno.h>
2015-01-29 21:23:00 -05:00
# include <stdarg.h>
2006-06-25 20:48:02 -04:00
# include <stdio.h>
2007-10-14 17:40:01 -04:00
# include <stdlib.h>
2006-06-29 11:53:05 -04:00
# include <string.h>
2007-10-14 17:40:01 -04:00
# include <time.h>
2006-06-25 20:48:02 -04:00
# include <unistd.h>
2019-03-01 05:15:10 -05:00
# include <sys/resource.h>
2006-06-25 20:48:02 -04:00
# include <sys/socket.h>
2009-08-24 07:11:06 -04:00
# include <sys/types.h>
2014-06-19 23:30:16 -04:00
# include <sys/wait.h>
2006-06-25 20:48:02 -04:00
# include <netinet/in.h>
2009-07-15 01:16:31 -04:00
# include <netinet/tcp.h>
2006-06-25 20:48:02 -04:00
# include <arpa/inet.h>
2020-06-04 04:15:32 -04:00
# include <haproxy/action.h>
2020-05-27 06:58:42 -04:00
# include <haproxy/api.h>
2020-06-09 03:07:15 -04:00
# include <haproxy/arg.h>
2020-06-04 18:00:29 -04:00
# include <haproxy/cfgparse.h>
2020-06-04 12:21:56 -04:00
# include <haproxy/check.h>
2020-06-02 04:22:45 -04:00
# include <haproxy/chunk.h>
2020-06-11 03:23:02 -04:00
# include <haproxy/dgram.h>
2022-04-04 05:29:28 -04:00
# include <haproxy/dynbuf.h>
2020-06-05 09:31:31 -04:00
# include <haproxy/extcheck.h>
2020-06-09 03:07:15 -04:00
# include <haproxy/fd.h>
# include <haproxy/global.h>
# include <haproxy/h1.h>
2020-06-02 13:11:26 -04:00
# include <haproxy/http.h>
2020-06-04 03:08:41 -04:00
# include <haproxy/http_htx.h>
2020-06-03 02:44:35 -04:00
# include <haproxy/htx.h>
2020-06-09 03:07:15 -04:00
# include <haproxy/istbuf.h>
# include <haproxy/list.h>
2020-06-04 16:01:04 -04:00
# include <haproxy/log.h>
2020-06-09 03:07:15 -04:00
# include <haproxy/mailers.h>
# include <haproxy/port_range.h>
# include <haproxy/proto_tcp.h>
# include <haproxy/protocol.h>
2020-06-04 16:29:18 -04:00
# include <haproxy/proxy.h>
2020-06-09 03:07:15 -04:00
# include <haproxy/queue.h>
# include <haproxy/regex.h>
2021-02-12 13:42:55 -05:00
# include <haproxy/resolvers.h>
2020-06-09 03:07:15 -04:00
# include <haproxy/sample.h>
2020-06-04 17:20:13 -04:00
# include <haproxy/server.h>
2020-06-04 14:30:20 -04:00
# include <haproxy/ssl_sock.h>
2020-06-04 13:58:55 -04:00
# include <haproxy/stats-t.h>
2020-06-04 11:25:40 -04:00
# include <haproxy/task.h>
2020-06-05 06:25:38 -04:00
# include <haproxy/tcpcheck.h>
2020-06-09 03:07:15 -04:00
# include <haproxy/thread.h>
# include <haproxy/time.h>
# include <haproxy/tools.h>
2021-04-10 03:00:38 -04:00
# include <haproxy/trace.h>
2020-06-04 10:25:31 -04:00
# include <haproxy/vars.h>
2006-06-25 20:48:02 -04:00
2021-04-10 03:00:38 -04:00
/* trace source and events */
static void check_trace ( enum trace_level level , uint64_t mask ,
const struct trace_source * src ,
const struct ist where , const struct ist func ,
const void * a1 , const void * a2 , const void * a3 , const void * a4 ) ;
/* The event representation is split like this :
* check - check
*
* CHECK_EV_ * macros are defined in < haproxy / check . h >
*/
static const struct trace_event check_trace_events [ ] = {
{ . mask = CHK_EV_TASK_WAKE , . name = " task_wake " , . desc = " Check task woken up " } ,
{ . mask = CHK_EV_HCHK_START , . name = " hchck_start " , . desc = " Health-check started " } ,
{ . mask = CHK_EV_HCHK_WAKE , . name = " hchck_wake " , . desc = " Health-check woken up " } ,
{ . mask = CHK_EV_HCHK_RUN , . name = " hchck_run " , . desc = " Health-check running " } ,
{ . mask = CHK_EV_HCHK_END , . name = " hchck_end " , . desc = " Health-check terminated " } ,
{ . mask = CHK_EV_HCHK_SUCC , . name = " hchck_succ " , . desc = " Health-check success " } ,
{ . mask = CHK_EV_HCHK_ERR , . name = " hchck_err " , . desc = " Health-check failure " } ,
{ . mask = CHK_EV_TCPCHK_EVAL , . name = " tcp_check_eval " , . desc = " tcp-check rules evaluation " } ,
{ . mask = CHK_EV_TCPCHK_ERR , . name = " tcp_check_err " , . desc = " tcp-check evaluation error " } ,
{ . mask = CHK_EV_TCPCHK_CONN , . name = " tcp_check_conn " , . desc = " tcp-check connection rule " } ,
{ . mask = CHK_EV_TCPCHK_SND , . name = " tcp_check_send " , . desc = " tcp-check send rule " } ,
{ . mask = CHK_EV_TCPCHK_EXP , . name = " tcp_check_expect " , . desc = " tcp-check expect rule " } ,
{ . mask = CHK_EV_TCPCHK_ACT , . name = " tcp_check_action " , . desc = " tcp-check action rule " } ,
{ . mask = CHK_EV_RX_DATA , . name = " rx_data " , . desc = " receipt of data " } ,
{ . mask = CHK_EV_RX_BLK , . name = " rx_blk " , . desc = " receipt blocked " } ,
{ . mask = CHK_EV_RX_ERR , . name = " rx_err " , . desc = " receipt error " } ,
{ . mask = CHK_EV_TX_DATA , . name = " tx_data " , . desc = " transmission of data " } ,
{ . mask = CHK_EV_TX_BLK , . name = " tx_blk " , . desc = " transmission blocked " } ,
{ . mask = CHK_EV_TX_ERR , . name = " tx_err " , . desc = " transmission error " } ,
{ }
} ;
static const struct name_desc check_trace_lockon_args [ 4 ] = {
/* arg1 */ { /* already used by the check */ } ,
/* arg2 */ { } ,
/* arg3 */ { } ,
/* arg4 */ { }
} ;
static const struct name_desc check_trace_decoding [ ] = {
# define CHK_VERB_CLEAN 1
{ . name = " clean " , . desc = " only user-friendly stuff, generally suitable for level \" user \" " } ,
# define CHK_VERB_MINIMAL 2
2022-05-17 13:07:51 -04:00
{ . name = " minimal " , . desc = " report info on streams and connectors " } ,
2021-04-10 03:00:38 -04:00
# define CHK_VERB_SIMPLE 3
{ . name = " simple " , . desc = " add info on request and response channels " } ,
# define CHK_VERB_ADVANCED 4
{ . name = " advanced " , . desc = " add info on channel's buffer for data and developer levels only " } ,
# define CHK_VERB_COMPLETE 5
{ . name = " complete " , . desc = " add info on channel's buffer " } ,
{ /* end */ }
} ;
struct trace_source trace_check = {
. name = IST ( " check " ) ,
. desc = " Health-check " ,
. arg_def = TRC_ARG1_CHK , // TRACE()'s first argument is always a stream
. default_cb = check_trace ,
. known_events = check_trace_events ,
. lockon_args = check_trace_lockon_args ,
. decoding = check_trace_decoding ,
. report_events = ~ 0 , // report everything by default
} ;
# define TRACE_SOURCE &trace_check
INITCALL1 ( STG_REGISTER , trace_register_source , TRACE_SOURCE ) ;
2017-10-17 11:33:43 -04:00
2020-02-14 11:42:54 -05:00
/* Dummy frontend used to create all checks sessions. */
2020-06-05 06:25:38 -04:00
struct proxy checks_fe ;
2017-10-23 09:45:20 -04:00
2021-04-10 03:00:38 -04:00
static inline void check_trace_buf ( const struct buffer * buf , size_t ofs , size_t len )
{
size_t block1 , block2 ;
int line , ptr , newptr ;
block1 = b_contig_data ( buf , ofs ) ;
block2 = 0 ;
if ( block1 > len )
block1 = len ;
block2 = len - block1 ;
ofs = b_peek_ofs ( buf , ofs ) ;
line = 0 ;
ptr = ofs ;
while ( ptr < ofs + block1 ) {
newptr = dump_text_line ( & trace_buf , b_orig ( buf ) , b_size ( buf ) , ofs + block1 , & line , ptr ) ;
if ( newptr = = ptr )
break ;
ptr = newptr ;
}
line = ptr = 0 ;
while ( ptr < block2 ) {
newptr = dump_text_line ( & trace_buf , b_orig ( buf ) , b_size ( buf ) , block2 , & line , ptr ) ;
if ( newptr = = ptr )
break ;
ptr = newptr ;
}
}
/* trace source and events */
static void check_trace ( enum trace_level level , uint64_t mask ,
const struct trace_source * src ,
const struct ist where , const struct ist func ,
const void * a1 , const void * a2 , const void * a3 , const void * a4 )
{
const struct check * check = a1 ;
const struct server * srv = ( check ? check - > server : NULL ) ;
const size_t * val = a4 ;
const char * res ;
if ( ! check | | src - > verbosity < CHK_VERB_CLEAN )
return ;
2022-06-08 03:12:58 -04:00
if ( srv ) {
chunk_appendf ( & trace_buf , " : [%c] SRV=%s " ,
( ( check - > type = = PR_O2_EXT_CHK ) ? ' E ' : ( check - > state & CHK_ST_AGENT ? ' A ' : ' H ' ) ) ,
srv - > id ) ;
chunk_appendf ( & trace_buf , " status=%d/%d %s " ,
( check - > health > = check - > rise ) ? check - > health - check - > rise + 1 : check - > health ,
( check - > health > = check - > rise ) ? check - > fall : check - > rise ,
( check - > health > = check - > rise ) ? ( srv - > uweight ? " UP " : " DRAIN " ) : " DOWN " ) ;
}
else
chunk_appendf ( & trace_buf , " : [EMAIL] " ) ;
2021-04-10 03:00:38 -04:00
switch ( check - > result ) {
case CHK_RES_NEUTRAL : res = " - " ; break ;
case CHK_RES_FAILED : res = " FAIL " ; break ;
case CHK_RES_PASSED : res = " PASS " ; break ;
case CHK_RES_CONDPASS : res = " COND " ; break ;
default : res = " UNK " ; break ;
}
if ( src - > verbosity = = CHK_VERB_CLEAN )
return ;
chunk_appendf ( & trace_buf , " - last=%s(%d)/%s(%d) " ,
get_check_status_info ( check - > status ) , check - > status ,
res , check - > result ) ;
/* Display the value to the 4th argument (level > STATE) */
if ( src - > level > TRACE_LEVEL_STATE & & val )
chunk_appendf ( & trace_buf , " - VAL=%lu " , ( long ) * val ) ;
chunk_appendf ( & trace_buf , " check=%p(0x%08x) " , check , check - > state ) ;
if ( src - > verbosity = = CHK_VERB_MINIMAL )
return ;
2022-05-27 04:04:04 -04:00
if ( check - > sc ) {
struct connection * conn = sc_conn ( check - > sc ) ;
2021-12-15 03:50:17 -05:00
chunk_appendf ( & trace_buf , " - conn=%p(0x%08x) " , conn , conn ? conn - > flags : 0 ) ;
2022-05-27 04:04:04 -04:00
chunk_appendf ( & trace_buf , " sc=%p(0x%08x) " , check - > sc , check - > sc - > flags ) ;
2021-04-10 03:00:38 -04:00
}
if ( mask & CHK_EV_TCPCHK ) {
const char * type ;
switch ( check - > tcpcheck_rules - > flags & TCPCHK_RULES_PROTO_CHK ) {
case TCPCHK_RULES_PGSQL_CHK : type = " PGSQL " ; break ;
case TCPCHK_RULES_REDIS_CHK : type = " REDIS " ; break ;
case TCPCHK_RULES_SMTP_CHK : type = " SMTP " ; break ;
case TCPCHK_RULES_HTTP_CHK : type = " HTTP " ; break ;
case TCPCHK_RULES_MYSQL_CHK : type = " MYSQL " ; break ;
case TCPCHK_RULES_LDAP_CHK : type = " LDAP " ; break ;
case TCPCHK_RULES_SSL3_CHK : type = " SSL3 " ; break ;
case TCPCHK_RULES_AGENT_CHK : type = " AGENT " ; break ;
case TCPCHK_RULES_SPOP_CHK : type = " SPOP " ; break ;
case TCPCHK_RULES_TCP_CHK : type = " TCP " ; break ;
default : type = " ??? " ; break ;
}
if ( check - > current_step )
chunk_appendf ( & trace_buf , " - tcp-check=(%s,%d) " , type , tcpcheck_get_step_id ( check , NULL ) ) ;
else
chunk_appendf ( & trace_buf , " - tcp-check=(%s,-) " , type ) ;
}
/* Display bi and bo buffer info (level > USER & verbosity > SIMPLE) */
if ( src - > level > TRACE_LEVEL_USER ) {
const struct buffer * buf = NULL ;
chunk_appendf ( & trace_buf , " bi=%u@%p+%u/%u " ,
( unsigned int ) b_data ( & check - > bi ) , b_orig ( & check - > bi ) ,
( unsigned int ) b_head_ofs ( & check - > bi ) , ( unsigned int ) b_size ( & check - > bi ) ) ;
chunk_appendf ( & trace_buf , " bo=%u@%p+%u/%u " ,
( unsigned int ) b_data ( & check - > bo ) , b_orig ( & check - > bo ) ,
( unsigned int ) b_head_ofs ( & check - > bo ) , ( unsigned int ) b_size ( & check - > bo ) ) ;
if ( src - > verbosity > = CHK_VERB_ADVANCED & & ( mask & ( CHK_EV_RX ) ) )
buf = ( b_is_null ( & check - > bi ) ? NULL : & check - > bi ) ;
else if ( src - > verbosity > = CHK_VERB_ADVANCED & & ( mask & ( CHK_EV_TX ) ) )
buf = ( b_is_null ( & check - > bo ) ? NULL : & check - > bo ) ;
if ( buf ) {
if ( ( check - > tcpcheck_rules - > flags & TCPCHK_RULES_PROTO_CHK ) = = TCPCHK_RULES_HTTP_CHK ) {
int full = ( src - > verbosity = = CHK_VERB_COMPLETE ) ;
chunk_memcat ( & trace_buf , " \n \t " , 2 ) ;
htx_dump ( & trace_buf , htxbuf ( buf ) , full ) ;
}
else {
int max = ( ( src - > verbosity = = CHK_VERB_COMPLETE ) ? 1024 : 256 ) ;
chunk_memcat ( & trace_buf , " \n " , 1 ) ;
if ( b_data ( buf ) > max ) {
check_trace_buf ( buf , 0 , max ) ;
chunk_memcat ( & trace_buf , " ... \n " , 6 ) ;
}
else
check_trace_buf ( buf , 0 , b_data ( buf ) ) ;
}
}
}
}
2020-04-20 08:54:42 -04:00
/**************************************************************************/
/************************ Handle check results ****************************/
/**************************************************************************/
struct check_status {
short result ; /* one of SRV_CHK_* */
char * info ; /* human readable short info */
char * desc ; /* long description */
} ;
struct analyze_status {
char * desc ; /* description */
unsigned char lr [ HANA_OBS_SIZE ] ; /* result for l4/l7: 0 = ignore, 1 - error, 2 - OK */
} ;
2012-03-18 18:24:41 -04:00
static const struct check_status check_statuses [ HCHK_STATUS_SIZE ] = {
2013-12-11 11:09:34 -05:00
[ HCHK_STATUS_UNKNOWN ] = { CHK_RES_UNKNOWN , " UNK " , " Unknown " } ,
[ HCHK_STATUS_INI ] = { CHK_RES_UNKNOWN , " INI " , " Initializing " } ,
2009-09-27 09:50:02 -04:00
[ HCHK_STATUS_START ] = { /* SPECIAL STATUS*/ } ,
2009-09-23 16:09:24 -04:00
2014-05-20 14:56:30 -04:00
/* Below we have finished checks */
[ HCHK_STATUS_CHECKED ] = { CHK_RES_NEUTRAL , " CHECKED " , " No status change " } ,
2013-12-11 11:09:34 -05:00
[ HCHK_STATUS_HANA ] = { CHK_RES_FAILED , " HANA " , " Health analyze " } ,
2009-12-15 16:31:24 -05:00
2013-12-11 11:09:34 -05:00
[ HCHK_STATUS_SOCKERR ] = { CHK_RES_FAILED , " SOCKERR " , " Socket error " } ,
2009-09-23 16:09:24 -04:00
2013-12-11 11:09:34 -05:00
[ HCHK_STATUS_L4OK ] = { CHK_RES_PASSED , " L4OK " , " Layer4 check passed " } ,
[ HCHK_STATUS_L4TOUT ] = { CHK_RES_FAILED , " L4TOUT " , " Layer4 timeout " } ,
[ HCHK_STATUS_L4CON ] = { CHK_RES_FAILED , " L4CON " , " Layer4 connection problem " } ,
2009-09-23 16:09:24 -04:00
2013-12-11 11:09:34 -05:00
[ HCHK_STATUS_L6OK ] = { CHK_RES_PASSED , " L6OK " , " Layer6 check passed " } ,
[ HCHK_STATUS_L6TOUT ] = { CHK_RES_FAILED , " L6TOUT " , " Layer6 timeout " } ,
[ HCHK_STATUS_L6RSP ] = { CHK_RES_FAILED , " L6RSP " , " Layer6 invalid response " } ,
2009-09-23 16:09:24 -04:00
2013-12-11 11:09:34 -05:00
[ HCHK_STATUS_L7TOUT ] = { CHK_RES_FAILED , " L7TOUT " , " Layer7 timeout " } ,
[ HCHK_STATUS_L7RSP ] = { CHK_RES_FAILED , " L7RSP " , " Layer7 invalid response " } ,
2009-09-23 16:09:24 -04:00
2009-09-27 09:50:02 -04:00
[ HCHK_STATUS_L57DATA ] = { /* DUMMY STATUS */ } ,
2009-09-23 16:09:24 -04:00
2013-12-11 11:09:34 -05:00
[ HCHK_STATUS_L7OKD ] = { CHK_RES_PASSED , " L7OK " , " Layer7 check passed " } ,
[ HCHK_STATUS_L7OKCD ] = { CHK_RES_CONDPASS , " L7OKC " , " Layer7 check conditionally passed " } ,
[ HCHK_STATUS_L7STS ] = { CHK_RES_FAILED , " L7STS " , " Layer7 wrong status " } ,
2014-06-19 23:30:16 -04:00
[ HCHK_STATUS_PROCERR ] = { CHK_RES_FAILED , " PROCERR " , " External check error " } ,
[ HCHK_STATUS_PROCTOUT ] = { CHK_RES_FAILED , " PROCTOUT " , " External check timeout " } ,
2014-08-06 19:55:37 -04:00
[ HCHK_STATUS_PROCOK ] = { CHK_RES_PASSED , " PROCOK " , " External check passed " } ,
2009-09-23 16:09:24 -04:00
} ;
2012-03-18 18:24:41 -04:00
static const struct analyze_status analyze_statuses [ HANA_STATUS_SIZE ] = { /* 0: ignore, 1: error, 2: OK */
2009-12-15 16:31:24 -05:00
[ HANA_STATUS_UNKNOWN ] = { " Unknown " , { 0 , 0 } } ,
[ HANA_STATUS_L4_OK ] = { " L4 successful connection " , { 2 , 0 } } ,
[ HANA_STATUS_L4_ERR ] = { " L4 unsuccessful connection " , { 1 , 1 } } ,
[ HANA_STATUS_HTTP_OK ] = { " Correct http response " , { 0 , 2 } } ,
[ HANA_STATUS_HTTP_STS ] = { " Wrong http response " , { 0 , 1 } } ,
[ HANA_STATUS_HTTP_HDRRSP ] = { " Invalid http response (headers) " , { 0 , 1 } } ,
[ HANA_STATUS_HTTP_RSP ] = { " Invalid http response " , { 0 , 1 } } ,
[ HANA_STATUS_HTTP_READ_ERROR ] = { " Read error (http) " , { 0 , 1 } } ,
[ HANA_STATUS_HTTP_READ_TIMEOUT ] = { " Read timeout (http) " , { 0 , 1 } } ,
[ HANA_STATUS_HTTP_BROKEN_PIPE ] = { " Close from server (http) " , { 0 , 1 } } ,
} ;
2019-12-27 06:03:27 -05:00
/* checks if <err> is a real error for errno or one that can be ignored, and
* return 0 for these ones or < err > for real ones .
*/
static inline int unclean_errno ( int err )
{
2022-04-25 14:32:15 -04:00
if ( err = = EAGAIN | | err = = EWOULDBLOCK | | err = = EINPROGRESS | |
2019-12-27 06:03:27 -05:00
err = = EISCONN | | err = = EALREADY )
return 0 ;
return err ;
}
2021-02-01 07:11:50 -05:00
/* Converts check_status code to result code */
short get_check_status_result ( short check_status )
{
if ( check_status < HCHK_STATUS_SIZE )
return check_statuses [ check_status ] . result ;
else
return check_statuses [ HCHK_STATUS_UNKNOWN ] . result ;
}
2020-04-20 08:54:42 -04:00
/* Converts check_status code to description */
2009-09-23 16:09:24 -04:00
const char * get_check_status_description ( short check_status ) {
const char * desc ;
if ( check_status < HCHK_STATUS_SIZE )
2009-09-27 09:50:02 -04:00
desc = check_statuses [ check_status ] . desc ;
2009-09-23 16:09:24 -04:00
else
desc = NULL ;
if ( desc & & * desc )
return desc ;
else
2009-09-27 09:50:02 -04:00
return check_statuses [ HCHK_STATUS_UNKNOWN ] . desc ;
2009-09-23 16:09:24 -04:00
}
2020-04-20 08:54:42 -04:00
/* Converts check_status code to short info */
2021-02-14 16:26:23 -05:00
const char * get_check_status_info ( short check_status )
{
2009-09-23 16:09:24 -04:00
const char * info ;
if ( check_status < HCHK_STATUS_SIZE )
2009-09-27 09:50:02 -04:00
info = check_statuses [ check_status ] . info ;
2009-09-23 16:09:24 -04:00
else
info = NULL ;
if ( info & & * info )
return info ;
else
2009-09-27 09:50:02 -04:00
return check_statuses [ HCHK_STATUS_UNKNOWN ] . info ;
2009-09-23 16:09:24 -04:00
}
2020-04-20 08:54:42 -04:00
/* Convert analyze_status to description */
2009-12-15 16:31:24 -05:00
const char * get_analyze_status ( short analyze_status ) {
const char * desc ;
if ( analyze_status < HANA_STATUS_SIZE )
desc = analyze_statuses [ analyze_status ] . desc ;
else
desc = NULL ;
if ( desc & & * desc )
return desc ;
else
return analyze_statuses [ HANA_STATUS_UNKNOWN ] . desc ;
}
2023-04-14 12:07:09 -04:00
/* append check info to buffer msg */
void check_append_info ( struct buffer * msg , struct check * check )
{
if ( ! check )
return ;
chunk_appendf ( msg , " , reason: %s " , get_check_status_description ( check - > status ) ) ;
if ( check - > status > = HCHK_STATUS_L57DATA )
chunk_appendf ( msg , " , code: %d " , check - > code ) ;
if ( check - > desc [ 0 ] ) {
struct buffer src ;
chunk_appendf ( msg , " , info: \" " ) ;
chunk_initlen ( & src , check - > desc , 0 , strlen ( check - > desc ) ) ;
chunk_asciiencode ( msg , & src , ' " ' ) ;
chunk_appendf ( msg , " \" " ) ;
}
if ( check - > duration > = 0 )
chunk_appendf ( msg , " , check duration: %ldms " , check - > duration ) ;
}
2020-04-20 08:54:42 -04:00
/* Sets check->status, update check->duration and fill check->result with an
* adequate CHK_RES_ * value . The new check - > health is computed based on the
* result .
2009-09-27 09:50:02 -04:00
*
2020-04-20 08:54:42 -04:00
* Shows information in logs about failed health check if server is UP or
* succeeded health checks if server is DOWN .
2009-09-23 16:09:24 -04:00
*/
2020-06-05 06:25:38 -04:00
void set_server_check_status ( struct check * check , short status , const char * desc )
2012-10-29 11:51:55 -04:00
{
2013-02-23 01:35:38 -05:00
struct server * s = check - > server ;
2014-05-13 15:01:39 -04:00
short prev_status = check - > status ;
2023-03-30 04:19:08 -04:00
int report = ( status ! = prev_status ) ? 1 : 0 ;
2013-02-23 01:35:38 -05:00
2021-04-10 03:00:38 -04:00
TRACE_POINT ( CHK_EV_HCHK_RUN , check ) ;
2009-09-27 09:50:02 -04:00
if ( status = = HCHK_STATUS_START ) {
2013-12-11 11:09:34 -05:00
check - > result = CHK_RES_UNKNOWN ; /* no result yet */
2013-02-23 01:35:38 -05:00
check - > desc [ 0 ] = ' \0 ' ;
2023-04-28 03:16:15 -04:00
check - > start = now_ns ;
2009-09-27 09:50:02 -04:00
return ;
}
2013-02-23 01:35:38 -05:00
if ( ! check - > status )
2009-09-27 09:50:02 -04:00
return ;
2009-09-23 16:09:24 -04:00
2009-10-10 15:06:49 -04:00
if ( desc & & * desc ) {
2013-02-23 01:35:38 -05:00
strncpy ( check - > desc , desc , HCHK_DESC_LEN - 1 ) ;
check - > desc [ HCHK_DESC_LEN - 1 ] = ' \0 ' ;
2009-10-10 15:06:49 -04:00
} else
2013-02-23 01:35:38 -05:00
check - > desc [ 0 ] = ' \0 ' ;
2009-10-10 15:06:49 -04:00
2013-02-23 01:35:38 -05:00
check - > status = status ;
2009-09-27 09:50:02 -04:00
if ( check_statuses [ status ] . result )
2013-02-23 01:35:38 -05:00
check - > result = check_statuses [ status ] . result ;
2009-09-27 09:50:02 -04:00
2009-12-15 16:31:24 -05:00
if ( status = = HCHK_STATUS_HANA )
2013-02-23 01:35:38 -05:00
check - > duration = - 1 ;
2023-04-28 08:39:50 -04:00
else if ( check - > start ) {
2009-09-27 09:50:02 -04:00
/* set_server_check_status() may be called more than once */
2023-04-28 03:16:15 -04:00
check - > duration = ns_to_ms ( now_ns - check - > start ) ;
2023-04-28 08:39:50 -04:00
check - > start = 0 ;
2009-09-27 09:50:02 -04:00
}
2014-05-20 14:56:30 -04:00
/* no change is expected if no state change occurred */
if ( check - > result = = CHK_RES_NEUTRAL )
return ;
2019-01-11 12:43:04 -05:00
/* If the check was really just sending a mail, it won't have an
* associated server , so we ' re done now .
*/
if ( ! s )
return ;
2021-04-10 03:00:38 -04:00
2014-05-20 08:55:13 -04:00
switch ( check - > result ) {
case CHK_RES_FAILED :
2014-05-23 05:32:36 -04:00
/* Failure to connect to the agent as a secondary check should not
* cause the server to be marked down .
*/
if ( ( ! ( check - > state & CHK_ST_AGENT ) | |
2015-02-25 21:26:17 -05:00
( check - > status > = HCHK_STATUS_L57DATA ) ) & &
BUG/MINOR: checks: Fix check->health computation for flapping servers
This patch fixes an old bug introduced in the commit 7b1d47ce ("MAJOR: checks:
move health checks changes to set_server_check_status()"). When a DOWN server is
flapping, everytime a check succeds, check->health is incremented. But when a
check fails, it is decremented only when it is higher than the rise value. So if
only one check succeds for a DOWN server, check->health will remain set to 1 for
all subsequent failing checks.
So, at first glance, it seems not that terrible because the server remains
DOWN. But it is reported in the transitional state "DOWN server, going up". And
it will remain in this state until it is UP again. And there is also an
insidious side effect. If a DOWN server is flapping time to time, It will end to
be considered UP after a uniq successful check, , regardless the rise threshold,
because check->health will be increased slowly and never decreased.
To fix the bug, we just need to reset check->health to 0 when a check fails for
a DOWN server. To do so, we just need to relax the condition to handle a failure
in the function set_server_check_status.
This patch must be backported to haproxy 1.5 and newer.
2018-05-02 06:12:45 -04:00
( check - > health > 0 ) ) {
2021-04-06 07:53:36 -04:00
_HA_ATOMIC_INC ( & s - > counters . failed_checks ) ;
2014-05-20 08:55:13 -04:00
report = 1 ;
check - > health - - ;
if ( check - > health < check - > rise )
check - > health = 0 ;
}
break ;
2009-09-27 09:50:02 -04:00
2014-05-20 08:55:13 -04:00
case CHK_RES_PASSED :
2020-11-20 12:13:02 -05:00
case CHK_RES_CONDPASS :
if ( check - > health < check - > rise + check - > fall - 1 ) {
2014-05-20 08:55:13 -04:00
report = 1 ;
check - > health + + ;
2009-09-27 09:50:02 -04:00
2014-05-20 08:55:13 -04:00
if ( check - > health > = check - > rise )
check - > health = check - > rise + check - > fall - 1 ; /* OK now */
}
2009-09-27 09:50:02 -04:00
2014-05-20 08:55:13 -04:00
/* clear consecutive_errors if observing is enabled */
if ( s - > onerror )
2022-12-07 08:27:42 -05:00
HA_ATOMIC_STORE ( & s - > consecutive_errors , 0 ) ;
2014-05-20 08:55:13 -04:00
break ;
2009-12-15 16:31:24 -05:00
2014-05-20 08:55:13 -04:00
default :
break ;
}
2009-09-27 09:50:02 -04:00
2023-03-30 04:19:08 -04:00
if ( report )
srv_event_hdl_publish_check ( s , check ) ;
if ( s - > proxy - > options2 & PR_O2_LOGHCHKS & & report ) {
2014-05-20 08:55:13 -04:00
chunk_printf ( & trash ,
2014-05-23 05:32:36 -04:00
" %s check for %sserver %s/%s %s%s " ,
( check - > state & CHK_ST_AGENT ) ? " Agent " : " Health " ,
2014-05-13 09:54:22 -04:00
s - > flags & SRV_F_BACKUP ? " backup " : " " ,
2012-10-29 11:51:55 -04:00
s - > proxy - > id , s - > id ,
2013-12-11 11:09:34 -05:00
( check - > result = = CHK_RES_CONDPASS ) ? " conditionally " : " " ,
2014-05-20 08:55:13 -04:00
( check - > result > = CHK_RES_PASSED ) ? " succeeded " : " failed " ) ;
2009-09-27 09:50:02 -04:00
2023-04-14 12:07:09 -04:00
check_append_info ( & trash , check ) ;
2009-09-27 09:50:02 -04:00
2012-10-29 11:51:55 -04:00
chunk_appendf ( & trash , " , status: %d/%d %s " ,
2014-05-20 08:55:13 -04:00
( check - > health > = check - > rise ) ? check - > health - check - > rise + 1 : check - > health ,
( check - > health > = check - > rise ) ? check - > fall : check - > rise ,
( check - > health > = check - > rise ) ? ( s - > uweight ? " UP " : " DRAIN " ) : " DOWN " ) ;
2009-09-27 09:50:02 -04:00
2018-07-13 04:54:26 -04:00
ha_warning ( " %s. \n " , trash . area ) ;
send_log ( s - > proxy , LOG_NOTICE , " %s. \n " , trash . area ) ;
send_email_alert ( s , LOG_INFO , " %s " , trash . area ) ;
2009-09-27 09:50:02 -04:00
}
2009-09-23 16:09:24 -04:00
}
MINOR: server: change srv_op_st_chg_cause storage type
This one is greatly inspired by "MINOR: server: change adm_st_chg_cause storage type".
While looking at current srv_op_st_chg_cause usage, it was clear that
the struct needed some cleanup since some leftovers from asynchronous server
state change updates were left behind and resulted in some useless code
duplication, and making the whole thing harder to maintain.
Two observations were made:
- by tracking down srv_set_{running, stopped, stopping} usage,
we can see that the <reason> argument is always a fixed statically
allocated string.
- check-related state change context (duration, status, code...) is
not used anymore since srv_append_status() directly extracts the
values from the server->check. This is pure legacy from when
the state changes were applied asynchronously.
To prevent code duplication, useless string copies and make the reason/cause
more exportable, we store it as an enum now, and we provide
srv_op_st_chg_cause() function to fetch the related description string.
HEALTH and AGENT causes (check related) are now explicitly identified to
make consumers like srv_append_op_chg_cause() able to fetch checks info
from the server itself if they need to.
2023-04-04 04:17:40 -04:00
static inline enum srv_op_st_chg_cause check_notify_cause ( struct check * check )
{
struct server * s = check - > server ;
/* We only report a cause for the check if we did not do so previously */
if ( ! s - > track & & ! ( s - > proxy - > options2 & PR_O2_LOGHCHKS ) )
return ( check - > state & CHK_ST_AGENT ) ? SRV_OP_STCHGC_AGENT : SRV_OP_STCHGC_HEALTH ;
return SRV_OP_STCHGC_NONE ;
}
2014-05-20 16:32:27 -04:00
/* Marks the check <check>'s server down if the current check is already failed
* and the server is not down yet nor in maintenance .
2006-06-25 20:48:02 -04:00
*/
2020-06-05 09:31:31 -04:00
void check_notify_failure ( struct check * check )
2006-06-25 20:48:02 -04:00
{
2013-02-23 01:35:38 -05:00
struct server * s = check - > server ;
2011-06-21 01:34:58 -04:00
2014-05-20 08:55:13 -04:00
/* The agent secondary check should only cause a server to be marked
* as down if check - > status is HCHK_STATUS_L7STS , which indicates
* that the agent returned " fail " , " stopped " or " down " .
* The implication here is that failure to connect to the agent
* as a secondary check should not cause the server to be marked
* down . */
if ( ( check - > state & CHK_ST_AGENT ) & & check - > status ! = HCHK_STATUS_L7STS )
return ;
2014-05-20 16:32:27 -04:00
if ( check - > health > 0 )
return ;
2008-02-17 19:26:35 -05:00
2021-04-10 03:00:38 -04:00
TRACE_STATE ( " health-check failed, set server DOWN " , CHK_EV_HCHK_END | CHK_EV_HCHK_ERR , check ) ;
MINOR: server: change srv_op_st_chg_cause storage type
This one is greatly inspired by "MINOR: server: change adm_st_chg_cause storage type".
While looking at current srv_op_st_chg_cause usage, it was clear that
the struct needed some cleanup since some leftovers from asynchronous server
state change updates were left behind and resulted in some useless code
duplication, and making the whole thing harder to maintain.
Two observations were made:
- by tracking down srv_set_{running, stopped, stopping} usage,
we can see that the <reason> argument is always a fixed statically
allocated string.
- check-related state change context (duration, status, code...) is
not used anymore since srv_append_status() directly extracts the
values from the server->check. This is pure legacy from when
the state changes were applied asynchronously.
To prevent code duplication, useless string copies and make the reason/cause
more exportable, we store it as an enum now, and we provide
srv_op_st_chg_cause() function to fetch the related description string.
HEALTH and AGENT causes (check related) are now explicitly identified to
make consumers like srv_append_op_chg_cause() able to fetch checks info
from the server itself if they need to.
2023-04-04 04:17:40 -04:00
srv_set_stopped ( s , check_notify_cause ( check ) ) ;
2006-06-25 20:48:02 -04:00
}
2014-05-16 11:37:50 -04:00
/* Marks the check <check> as valid and tries to set its server up, provided
2014-05-21 04:30:54 -04:00
* it isn ' t in maintenance , it is not tracking a down server and other checks
* comply . The rule is simple : by default , a server is up , unless any of the
* following conditions is true :
* - health check failed ( check - > health < rise )
* - agent check failed ( agent - > health < rise )
* - the server tracks a down server ( track & & track - > state = = STOPPED )
* Note that if the server has a slowstart , it will switch to STARTING instead
* of RUNNING . Also , only the health checks support the nolb mode , so the
* agent ' s success may not take the server out of this mode .
2014-05-16 11:37:50 -04:00
*/
2020-06-05 09:31:31 -04:00
void check_notify_success ( struct check * check )
2014-05-16 11:37:50 -04:00
{
2013-02-23 01:35:38 -05:00
struct server * s = check - > server ;
2008-02-17 19:26:35 -05:00
2017-08-31 08:41:55 -04:00
if ( s - > next_admin & SRV_ADMF_MAINT )
2014-05-16 11:37:50 -04:00
return ;
2010-01-31 16:34:03 -05:00
2017-08-31 08:41:55 -04:00
if ( s - > track & & s - > track - > next_state = = SRV_ST_STOPPED )
2014-05-16 11:37:50 -04:00
return ;
2008-02-17 19:26:35 -05:00
2014-05-21 04:30:54 -04:00
if ( ( s - > check . state & CHK_ST_ENABLED ) & & ( s - > check . health < s - > check . rise ) )
return ;
2008-02-17 19:26:35 -05:00
2014-05-21 04:30:54 -04:00
if ( ( s - > agent . state & CHK_ST_ENABLED ) & & ( s - > agent . health < s - > agent . rise ) )
return ;
2014-05-16 11:37:50 -04:00
2017-08-31 08:41:55 -04:00
if ( ( check - > state & CHK_ST_AGENT ) & & s - > next_state = = SRV_ST_STOPPING )
2014-05-21 04:30:54 -04:00
return ;
2008-02-17 19:26:35 -05:00
2021-04-10 03:00:38 -04:00
TRACE_STATE ( " health-check succeeded, set server RUNNING " , CHK_EV_HCHK_END | CHK_EV_HCHK_SUCC , check ) ;
MINOR: server: change srv_op_st_chg_cause storage type
This one is greatly inspired by "MINOR: server: change adm_st_chg_cause storage type".
While looking at current srv_op_st_chg_cause usage, it was clear that
the struct needed some cleanup since some leftovers from asynchronous server
state change updates were left behind and resulted in some useless code
duplication, and making the whole thing harder to maintain.
Two observations were made:
- by tracking down srv_set_{running, stopped, stopping} usage,
we can see that the <reason> argument is always a fixed statically
allocated string.
- check-related state change context (duration, status, code...) is
not used anymore since srv_append_status() directly extracts the
values from the server->check. This is pure legacy from when
the state changes were applied asynchronously.
To prevent code duplication, useless string copies and make the reason/cause
more exportable, we store it as an enum now, and we provide
srv_op_st_chg_cause() function to fetch the related description string.
HEALTH and AGENT causes (check related) are now explicitly identified to
make consumers like srv_append_op_chg_cause() able to fetch checks info
from the server itself if they need to.
2023-04-04 04:17:40 -04:00
srv_set_running ( s , check_notify_cause ( check ) ) ;
2008-02-17 19:26:35 -05:00
}
2014-05-21 07:57:23 -04:00
/* Marks the check <check> as valid and tries to set its server into stopping mode
* if it was running or starting , and provided it isn ' t in maintenance and other
* checks comply . The conditions for the server to be marked in stopping mode are
* the same as for it to be turned up . Also , only the health checks support the
* nolb mode .
2014-05-16 11:37:50 -04:00
*/
2020-06-05 09:31:31 -04:00
void check_notify_stopping ( struct check * check )
2014-05-16 11:37:50 -04:00
{
2013-02-23 01:35:38 -05:00
struct server * s = check - > server ;
2008-02-17 19:26:35 -05:00
2017-08-31 08:41:55 -04:00
if ( s - > next_admin & SRV_ADMF_MAINT )
2014-05-16 11:37:50 -04:00
return ;
2014-05-21 07:57:23 -04:00
if ( check - > state & CHK_ST_AGENT )
return ;
2008-02-17 19:26:35 -05:00
2017-08-31 08:41:55 -04:00
if ( s - > track & & s - > track - > next_state = = SRV_ST_STOPPED )
2014-05-21 07:57:23 -04:00
return ;
2008-02-17 19:26:35 -05:00
2014-05-21 07:57:23 -04:00
if ( ( s - > check . state & CHK_ST_ENABLED ) & & ( s - > check . health < s - > check . rise ) )
return ;
2008-02-17 19:26:35 -05:00
2014-05-21 07:57:23 -04:00
if ( ( s - > agent . state & CHK_ST_ENABLED ) & & ( s - > agent . health < s - > agent . rise ) )
return ;
2008-02-17 19:26:35 -05:00
2021-04-10 03:00:38 -04:00
TRACE_STATE ( " health-check condionnaly succeeded, set server STOPPING " , CHK_EV_HCHK_END | CHK_EV_HCHK_SUCC , check ) ;
MINOR: server: change srv_op_st_chg_cause storage type
This one is greatly inspired by "MINOR: server: change adm_st_chg_cause storage type".
While looking at current srv_op_st_chg_cause usage, it was clear that
the struct needed some cleanup since some leftovers from asynchronous server
state change updates were left behind and resulted in some useless code
duplication, and making the whole thing harder to maintain.
Two observations were made:
- by tracking down srv_set_{running, stopped, stopping} usage,
we can see that the <reason> argument is always a fixed statically
allocated string.
- check-related state change context (duration, status, code...) is
not used anymore since srv_append_status() directly extracts the
values from the server->check. This is pure legacy from when
the state changes were applied asynchronously.
To prevent code duplication, useless string copies and make the reason/cause
more exportable, we store it as an enum now, and we provide
srv_op_st_chg_cause() function to fetch the related description string.
HEALTH and AGENT causes (check related) are now explicitly identified to
make consumers like srv_append_op_chg_cause() able to fetch checks info
from the server itself if they need to.
2023-04-04 04:17:40 -04:00
srv_set_stopping ( s , check_notify_cause ( check ) ) ;
2008-02-17 19:26:35 -05:00
}
2006-06-25 20:48:02 -04:00
2013-12-31 17:47:37 -05:00
/* note: use health_adjust() only, which first checks that the observe mode is
2021-02-17 09:20:19 -05:00
* enabled . This will take the server lock if needed .
2013-12-31 17:47:37 -05:00
*/
void __health_adjust ( struct server * s , short status )
2012-10-29 11:51:55 -04:00
{
2009-12-15 16:31:24 -05:00
int failed ;
if ( s - > observe > = HANA_OBS_SIZE )
return ;
2013-01-23 18:37:39 -05:00
if ( status > = HANA_STATUS_SIZE | | ! analyze_statuses [ status ] . desc )
2009-12-15 16:31:24 -05:00
return ;
switch ( analyze_statuses [ status ] . lr [ s - > observe - 1 ] ) {
case 1 :
failed = 1 ;
break ;
case 2 :
failed = 0 ;
break ;
default :
return ;
}
if ( ! failed ) {
/* good: clear consecutive_errors */
2022-12-07 08:27:42 -05:00
HA_ATOMIC_STORE ( & s - > consecutive_errors , 0 ) ;
2009-12-15 16:31:24 -05:00
return ;
}
2022-12-07 08:27:42 -05:00
if ( HA_ATOMIC_ADD_FETCH ( & s - > consecutive_errors , 1 ) < s - > consecutive_errors_limit )
2009-12-15 16:31:24 -05:00
return ;
2012-10-29 11:51:55 -04:00
chunk_printf ( & trash , " Detected %d consecutive errors, last one was: %s " ,
2022-12-07 08:27:42 -05:00
HA_ATOMIC_LOAD ( & s - > consecutive_errors ) , get_analyze_status ( status ) ) ;
2009-12-15 16:31:24 -05:00
2021-02-17 09:20:19 -05:00
HA_SPIN_LOCK ( SERVER_LOCK , & s - > lock ) ;
2022-12-07 06:17:24 -05:00
/* force fastinter for upcoming check
* ( does nothing if fastinter is not enabled )
*/
s - > check . state | = CHK_ST_FASTINTER ;
2009-12-15 16:31:24 -05:00
switch ( s - > onerror ) {
case HANA_ONERR_FASTINTER :
/* force fastinter - nothing to do here as all modes force it */
break ;
case HANA_ONERR_SUDDTH :
/* simulate a pre-fatal failed health check */
2013-11-24 20:46:38 -05:00
if ( s - > check . health > s - > check . rise )
s - > check . health = s - > check . rise + 1 ;
2009-12-15 16:31:24 -05:00
2022-11-14 01:31:36 -05:00
__fallthrough ;
2009-12-15 16:31:24 -05:00
case HANA_ONERR_FAILCHK :
/* simulate a failed health check */
2018-07-13 04:54:26 -04:00
set_server_check_status ( & s - > check , HCHK_STATUS_HANA ,
trash . area ) ;
2014-05-20 16:32:27 -04:00
check_notify_failure ( & s - > check ) ;
2009-12-15 16:31:24 -05:00
break ;
case HANA_ONERR_MARKDWN :
/* mark server down */
2013-11-24 20:46:38 -05:00
s - > check . health = s - > check . rise ;
2018-07-13 04:54:26 -04:00
set_server_check_status ( & s - > check , HCHK_STATUS_HANA ,
trash . area ) ;
2014-05-20 16:32:27 -04:00
check_notify_failure ( & s - > check ) ;
2009-12-15 16:31:24 -05:00
break ;
default :
/* write a warning? */
break ;
}
2021-02-17 09:20:19 -05:00
HA_SPIN_UNLOCK ( SERVER_LOCK , & s - > lock ) ;
2022-12-07 08:27:42 -05:00
HA_ATOMIC_STORE ( & s - > consecutive_errors , 0 ) ;
2021-04-06 07:53:36 -04:00
_HA_ATOMIC_INC ( & s - > counters . failed_hana ) ;
2009-12-15 16:31:24 -05:00
BUG/MEDIUM: checks: do not reschedule a possibly running task on state change
Aurlien found an issue introduced in 2.7-dev8 with commit d114f4a68
("MEDIUM: checks: spread the checks load over random threads"), but which
in fact has deeper roots.
When a server's state is changed via __health_adjust(), if a fastinter
setting is set, the task gets rescheduled to run at the new date. The
way it's done is not thread safe, as nothing prevents another thread
where the task is already running from also updating the expire field
in parallel. But since such events are quite rare, this statistically
never happens. However, with the commit above, the tasks are no longer
required to go to the shared wait queue and are no longer marked as
shared between multiple threads. It's just that *any* thread may run
them at a time without implying that all of them are allowed to modify
them. And this change is sufficient to trigger the BUG_ON() condition
in the scheduler that detects the inconsistency between a task queued
in one thread and being manipulated in parallel by another one:
FATAL: bug condition "task->tid != tid" matched at
include/haproxy/task.h:670
call trace(13):
| 0x55f61cf520c9 [c6 04 25 01 00 00 00 00]: main-0x2ee7
| 0x55f61d0646e8 [8b 45 08 a8 40 0f 85 65]: back_handle_st_cer+0x78/0x4d7
| 0x55f61cff3e72 [41 0f b6 4f 01 e9 c8 df]: process_stream+0x2252/0x364f
| 0x55f61d0d2fab [48 89 c3 48 85 db 74 75]: run_tasks_from_lists+0x34b/0x8c4
| 0x55f61d0d38ad [29 44 24 18 8b 54 24 18]: process_runnable_tasks+0x37d/0x6c6
| 0x55f61d0a22fa [83 3d 0b 63 1e 00 01 0f]: run_poll_loop+0x13a/0x536
| 0x55f61d0a28c9 [48 8b 1d f0 46 19 00 48]: main+0x14d919
| 0x55f61cf56dfe [31 c0 e8 eb 93 1b 00 31]: main+0x1e4e/0x2d5d
At first glance it looked like it could be addressed in the scheduler
only, but in fact the problem clearly is at the application level, since
some shared fields are manipulated without protection. At minima, the
task's expiry ought to be touched only under the server's lock. While
it's arguable that the scheduler could make such updates easier, changing
it alone will not be sufficient here.
Looking at the sequencing closer, it becomes obvious that we do not need
this task_schedule() at all: a simple task_wakeup() is sufficient for the
callee to update its timers. Indeed, the process_chk_con() function already
deals with spurious wakeups, and already uses srv_getinter() to calculate
the next wakeup date based on the current state. So here, instead of
having to queue the task from __health_adjust() to anticipate a new check,
we can simply wake the task up and let it decide when it needs to run
next. This is much cleaner as the expiry calculation remains performed at
a single place, from the task itself, as it should be, and it fixes the
problem above.
This should be backported to 2.7, but not to older versions where the
risks of breakage are higher than the chance to fix something that
ever happened.
2022-12-06 05:38:18 -05:00
if ( s - > check . fastinter ) {
/* timer might need to be advanced, it might also already be
* running in another thread . Let ' s just wake the task up , it
* will automatically adjust its timer .
*/
task_wakeup ( s - > check . task , TASK_WOKEN_MSG ) ;
2009-12-15 16:31:24 -05:00
}
}
2020-04-20 08:54:42 -04:00
/* Checks the connection. If an error has already been reported or the socket is
2013-12-04 18:31:46 -05:00
* closed , keep errno intact as it is supposed to contain the valid error code .
* If no error is reported , check the socket ' s error queue using getsockopt ( ) .
* Warning , this must be done only once when returning from poll , and never
* after an I / O error was attempted , otherwise the error queue might contain
* inconsistent errors . If an error is detected , the CO_FL_ERROR is set on the
* socket . Returns non - zero if an error was reported , zero if everything is
* clean ( including a properly closed socket ) .
*/
static int retrieve_errno_from_socket ( struct connection * conn )
{
int skerr ;
socklen_t lskerr = sizeof ( skerr ) ;
2019-12-27 06:03:27 -05:00
if ( conn - > flags & CO_FL_ERROR & & ( unclean_errno ( errno ) | | ! conn - > ctrl ) )
2013-12-04 18:31:46 -05:00
return 1 ;
2014-01-23 07:50:42 -05:00
if ( ! conn_ctrl_ready ( conn ) )
2013-12-04 18:31:46 -05:00
return 0 ;
2022-04-11 12:07:03 -04:00
BUG_ON ( conn - > flags & CO_FL_FDLESS ) ;
2017-08-24 08:31:19 -04:00
if ( getsockopt ( conn - > handle . fd , SOL_SOCKET , SO_ERROR , & skerr , & lskerr ) = = 0 )
2013-12-04 18:31:46 -05:00
errno = skerr ;
2019-12-27 06:03:27 -05:00
errno = unclean_errno ( errno ) ;
2013-12-04 18:31:46 -05:00
if ( ! errno ) {
/* we could not retrieve an error, that does not mean there is
* none . Just don ' t change anything and only report the prior
* error if any .
*/
if ( conn - > flags & CO_FL_ERROR )
return 1 ;
else
return 0 ;
}
conn - > flags | = CO_FL_ERROR | CO_FL_SOCK_WR_SH | CO_FL_SOCK_RD_SH ;
return 1 ;
}
2020-04-20 08:54:42 -04:00
/* Tries to collect as much information as possible on the connection status,
2013-12-04 05:17:05 -05:00
* and adjust the server status accordingly . It may make use of < errno_bck >
* if non - null when the caller is absolutely certain of its validity ( eg :
* checked just after a syscall ) . If the caller doesn ' t have a valid errno ,
* it can pass zero , and retrieve_errno_from_socket ( ) will be called to try
* to extract errno from the socket . If no error is reported , it will consider
* the < expired > flag . This is intended to be used when a connection error was
* reported in conn - > flags or when a timeout was reported in < expired > . The
* function takes care of not updating a server status which was already set .
* All situations where at least one of < expired > or CO_FL_ERROR are set
* produce a status .
*/
2020-06-05 06:25:38 -04:00
void chk_report_conn_err ( struct check * check , int errno_bck , int expired )
2013-12-04 05:17:05 -05:00
{
2022-05-27 04:04:04 -04:00
struct stconn * sc = check - > sc ;
struct connection * conn = sc_conn ( sc ) ;
2013-12-04 05:17:05 -05:00
const char * err_msg ;
2018-07-13 05:56:34 -04:00
struct buffer * chk ;
2014-10-02 08:51:02 -04:00
int step ;
2013-12-04 05:17:05 -05:00
2021-04-10 03:00:38 -04:00
if ( check - > result ! = CHK_RES_UNKNOWN ) {
2013-12-04 05:17:05 -05:00
return ;
2021-04-10 03:00:38 -04:00
}
2013-12-04 05:17:05 -05:00
2019-12-27 06:03:27 -05:00
errno = unclean_errno ( errno_bck ) ;
if ( conn & & errno )
2013-12-04 05:17:05 -05:00
retrieve_errno_from_socket ( conn ) ;
2022-06-13 01:59:46 -04:00
if ( conn & & ! ( conn - > flags & CO_FL_ERROR ) & & ! sc_ep_test ( sc , SE_FL_ERROR ) & & ! expired )
2013-12-04 05:17:05 -05:00
return ;
2021-04-10 03:00:38 -04:00
TRACE_ENTER ( CHK_EV_HCHK_END | CHK_EV_HCHK_ERR , check , 0 , 0 , ( size_t [ ] ) { expired } ) ;
2013-12-04 05:17:05 -05:00
/* we'll try to build a meaningful error message depending on the
* context of the error possibly present in conn - > err_code , and the
* socket error possibly collected above . This is useful to know the
* exact step of the L6 layer ( eg : SSL handshake ) .
*/
2013-10-06 17:24:13 -04:00
chk = get_trash_chunk ( ) ;
2020-04-07 06:06:14 -04:00
if ( check - > type = = PR_O2_TCPCHK_CHK & &
2020-04-17 14:15:59 -04:00
( check - > tcpcheck_rules - > flags & TCPCHK_RULES_PROTO_CHK ) = = TCPCHK_RULES_TCP_CHK ) {
2020-03-30 05:05:10 -04:00
step = tcpcheck_get_step_id ( check , NULL ) ;
2021-04-10 03:00:38 -04:00
if ( ! step ) {
TRACE_DEVEL ( " initial connection failure " , CHK_EV_HCHK_END | CHK_EV_HCHK_ERR , check ) ;
2014-10-02 08:51:02 -04:00
chunk_printf ( chk , " at initial connection step of tcp-check " ) ;
2021-04-10 03:00:38 -04:00
}
2014-10-02 08:51:02 -04:00
else {
chunk_printf ( chk , " at step %d of tcp-check " , step ) ;
/* we were looking for a string */
2020-03-30 05:05:10 -04:00
if ( check - > current_step & & check - > current_step - > action = = TCPCHK_ACT_CONNECT ) {
if ( check - > current_step - > connect . port )
chunk_appendf ( chk , " (connect port %d) " , check - > current_step - > connect . port ) ;
2014-10-02 08:51:02 -04:00
else
chunk_appendf ( chk , " (connect) " ) ;
2021-04-10 03:00:38 -04:00
TRACE_DEVEL ( " connection failure " , CHK_EV_HCHK_END | CHK_EV_HCHK_ERR , check ) ;
2014-10-02 08:51:02 -04:00
}
2020-03-30 05:05:10 -04:00
else if ( check - > current_step & & check - > current_step - > action = = TCPCHK_ACT_EXPECT ) {
struct tcpcheck_expect * expect = & check - > current_step - > expect ;
2020-02-07 09:37:17 -05:00
switch ( expect - > type ) {
case TCPCHK_EXPECT_STRING :
2020-04-21 04:57:42 -04:00
chunk_appendf ( chk , " (expect string '%.*s') " , ( unsigned int ) istlen ( expect - > data ) , istptr ( expect - > data ) ) ;
2020-02-07 09:37:17 -05:00
break ;
case TCPCHK_EXPECT_BINARY :
2023-10-30 04:00:37 -04:00
chunk_appendf ( chk , " (expect binary ' " ) ;
dump_binary ( chk , istptr ( expect - > data ) , ( int ) istlen ( expect - > data ) ) ;
chunk_appendf ( chk , " ') " ) ;
2020-02-07 09:37:17 -05:00
break ;
2020-05-05 12:10:01 -04:00
case TCPCHK_EXPECT_STRING_REGEX :
2014-10-02 08:51:02 -04:00
chunk_appendf ( chk , " (expect regex) " ) ;
2020-02-07 09:37:17 -05:00
break ;
2020-05-05 12:10:01 -04:00
case TCPCHK_EXPECT_BINARY_REGEX :
2020-02-07 09:37:17 -05:00
chunk_appendf ( chk , " (expect binary regex) " ) ;
break ;
2020-05-05 09:54:22 -04:00
case TCPCHK_EXPECT_STRING_LF :
chunk_appendf ( chk , " (expect log-format string) " ) ;
break ;
case TCPCHK_EXPECT_BINARY_LF :
chunk_appendf ( chk , " (expect log-format binary) " ) ;
break ;
2020-04-15 05:32:03 -04:00
case TCPCHK_EXPECT_HTTP_STATUS :
2020-04-24 07:53:12 -04:00
chunk_appendf ( chk , " (expect HTTP status codes) " ) ;
2020-04-15 05:32:03 -04:00
break ;
2020-05-05 12:10:01 -04:00
case TCPCHK_EXPECT_HTTP_STATUS_REGEX :
2020-04-15 05:32:03 -04:00
chunk_appendf ( chk , " (expect HTTP status regex) " ) ;
break ;
2020-05-05 04:47:36 -04:00
case TCPCHK_EXPECT_HTTP_HEADER :
chunk_appendf ( chk , " (expect HTTP header pattern) " ) ;
break ;
2020-04-15 05:32:03 -04:00
case TCPCHK_EXPECT_HTTP_BODY :
2020-04-21 04:57:42 -04:00
chunk_appendf ( chk , " (expect HTTP body content '%.*s') " , ( unsigned int ) istlen ( expect - > data ) , istptr ( expect - > data ) ) ;
2020-04-15 05:32:03 -04:00
break ;
2020-05-05 12:10:01 -04:00
case TCPCHK_EXPECT_HTTP_BODY_REGEX :
2020-04-15 05:32:03 -04:00
chunk_appendf ( chk , " (expect HTTP body regex) " ) ;
break ;
2020-05-05 09:54:22 -04:00
case TCPCHK_EXPECT_HTTP_BODY_LF :
chunk_appendf ( chk , " (expect log-format HTTP body) " ) ;
break ;
2020-04-03 09:24:06 -04:00
case TCPCHK_EXPECT_CUSTOM :
chunk_appendf ( chk , " (expect custom function) " ) ;
break ;
2020-02-07 09:37:17 -05:00
case TCPCHK_EXPECT_UNDEF :
chunk_appendf ( chk , " (undefined expect!) " ) ;
break ;
}
2021-04-10 03:00:38 -04:00
TRACE_DEVEL ( " expect rule failed " , CHK_EV_HCHK_END | CHK_EV_HCHK_ERR , check ) ;
2014-10-02 08:51:02 -04:00
}
2020-03-30 05:05:10 -04:00
else if ( check - > current_step & & check - > current_step - > action = = TCPCHK_ACT_SEND ) {
2014-10-02 08:51:02 -04:00
chunk_appendf ( chk , " (send) " ) ;
2021-04-10 03:00:38 -04:00
TRACE_DEVEL ( " send rule failed " , CHK_EV_HCHK_END | CHK_EV_HCHK_ERR , check ) ;
2014-10-02 08:51:02 -04:00
}
2015-05-01 02:03:04 -04:00
2020-04-01 07:11:41 -04:00
if ( check - > current_step & & check - > current_step - > comment )
chunk_appendf ( chk , " comment: '%s' " , check - > current_step - > comment ) ;
2013-10-06 17:24:13 -04:00
}
}
MEDIUM: checks: do not allocate a permanent connection anymore
Health check currently cheat, they allocate a connection upon startup and never
release it, it's only recycled. The problem with doing this is that this code
is preventing the connection code from evolving towards multiplexing.
This code ensures that it's safe for the checks to run without a connection
all the time. Given that the code heavily relies on CO_FL_ERROR to signal
check errors, it is not trivial but in practice this is the principle adopted
here :
- the connection is not allocated anymore on startup
- new checks are not supposed to have a connection, so an attempt is made
to allocate this connection in the check task's context. If it fails,
the check is aborted on a resource error, and the rare code on this path
verifying the connection was adjusted to check for its existence (in
practice, avoid to close it)
- returning checks necessarily have a valid connection (which may possibly
be closed).
- a "tcp-check connect" rule tries to allocate a new connection before
releasing the previous one (but after closing it), so that if it fails,
it still keeps the previous connection in a closed state. This ensures
a connection is always valid here
Now it works well on all tested cases (regular and TCP checks, even with
multiple reconnections), including when the connection is forced to NULL or
randomly allocated.
2017-10-04 12:05:01 -04:00
if ( conn & & conn - > err_code ) {
2019-12-27 06:03:27 -05:00
if ( unclean_errno ( errno ) )
2018-07-13 04:54:26 -04:00
chunk_printf ( & trash , " %s (%s)%s " , conn_err_code_str ( conn ) , strerror ( errno ) ,
chk - > area ) ;
2013-12-04 05:17:05 -05:00
else
2018-07-13 04:54:26 -04:00
chunk_printf ( & trash , " %s%s " , conn_err_code_str ( conn ) ,
chk - > area ) ;
err_msg = trash . area ;
2013-12-04 05:17:05 -05:00
}
else {
2019-12-27 06:03:27 -05:00
if ( unclean_errno ( errno ) ) {
2018-07-13 04:54:26 -04:00
chunk_printf ( & trash , " %s%s " , strerror ( errno ) ,
chk - > area ) ;
err_msg = trash . area ;
2013-12-04 05:17:05 -05:00
}
else {
2018-07-13 04:54:26 -04:00
err_msg = chk - > area ;
2013-12-04 05:17:05 -05:00
}
}
MEDIUM: checks: do not allocate a permanent connection anymore
Health check currently cheat, they allocate a connection upon startup and never
release it, it's only recycled. The problem with doing this is that this code
is preventing the connection code from evolving towards multiplexing.
This code ensures that it's safe for the checks to run without a connection
all the time. Given that the code heavily relies on CO_FL_ERROR to signal
check errors, it is not trivial but in practice this is the principle adopted
here :
- the connection is not allocated anymore on startup
- new checks are not supposed to have a connection, so an attempt is made
to allocate this connection in the check task's context. If it fails,
the check is aborted on a resource error, and the rare code on this path
verifying the connection was adjusted to check for its existence (in
practice, avoid to close it)
- returning checks necessarily have a valid connection (which may possibly
be closed).
- a "tcp-check connect" rule tries to allocate a new connection before
releasing the previous one (but after closing it), so that if it fails,
it still keeps the previous connection in a closed state. This ensures
a connection is always valid here
Now it works well on all tested cases (regular and TCP checks, even with
multiple reconnections), including when the connection is forced to NULL or
randomly allocated.
2017-10-04 12:05:01 -04:00
if ( check - > state & CHK_ST_PORT_MISS ) {
2016-06-13 08:15:41 -04:00
/* NOTE: this is reported after <fall> tries */
set_server_check_status ( check , HCHK_STATUS_SOCKERR , err_msg ) ;
}
2022-06-13 01:59:46 -04:00
if ( ! conn | | ! conn - > ctrl ) {
2020-10-26 06:10:49 -04:00
/* error before any connection attempt (connection allocation error or no control layer) */
MEDIUM: checks: do not allocate a permanent connection anymore
Health check currently cheat, they allocate a connection upon startup and never
release it, it's only recycled. The problem with doing this is that this code
is preventing the connection code from evolving towards multiplexing.
This code ensures that it's safe for the checks to run without a connection
all the time. Given that the code heavily relies on CO_FL_ERROR to signal
check errors, it is not trivial but in practice this is the principle adopted
here :
- the connection is not allocated anymore on startup
- new checks are not supposed to have a connection, so an attempt is made
to allocate this connection in the check task's context. If it fails,
the check is aborted on a resource error, and the rare code on this path
verifying the connection was adjusted to check for its existence (in
practice, avoid to close it)
- returning checks necessarily have a valid connection (which may possibly
be closed).
- a "tcp-check connect" rule tries to allocate a new connection before
releasing the previous one (but after closing it), so that if it fails,
it still keeps the previous connection in a closed state. This ensures
a connection is always valid here
Now it works well on all tested cases (regular and TCP checks, even with
multiple reconnections), including when the connection is forced to NULL or
randomly allocated.
2017-10-04 12:05:01 -04:00
set_server_check_status ( check , HCHK_STATUS_SOCKERR , err_msg ) ;
}
MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_*
Commit 477902bd2e ("MEDIUM: connections: Get ride of the xprt_done
callback.") broke the master CLI for a very obscure reason. It happens
that short requests immediately terminated by a shutdown are properly
received, CS_FL_EOS is correctly set, but in si_cs_recv(), we refrain
from setting CF_SHUTR on the channel because CO_FL_CONNECTED was not
yet set on the connection since we've not passed again through
conn_fd_handler() and it was not done in conn_complete_session(). While
commit a8a415d31a ("BUG/MEDIUM: connections: Set CO_FL_CONNECTED in
conn_complete_session()") fixed the issue, such accident may happen
again as the root cause is deeper and actually comes down to the fact
that CO_FL_CONNECTED is lazily set at various check points in the code
but not every time we drop one wait bit. It is not the first time we
face this situation.
Originally this flag was used to detect the transition between WAIT_*
and CONNECTED in order to call ->wake() from the FD handler. But since
at least 1.8-dev1 with commit 7bf3fa3c23 ("BUG/MAJOR: connection: update
CO_FL_CONNECTED before calling the data layer"), CO_FL_CONNECTED is
always synchronized against the two others before being checked. Moreover,
with the I/Os moved to tasklets, the decision to call the ->wake() function
is performed after the I/Os in si_cs_process() and equivalent, which don't
care about this transition either.
So in essence, checking for CO_FL_CONNECTED has become a lazy wait to
check for (CO_FL_WAIT_L4_CONN | CO_FL_WAIT_L6_CONN), but that always
relies on someone else having synchronized it.
This patch addresses it once for all by killing this flag and only checking
the two others (for which a composite mask CO_FL_WAIT_L4L6 was added). This
revealed a number of inconsistencies that were purposely not addressed here
for the sake of bisectability:
- while most places do check both L4+L6 and HANDSHAKE at the same time,
some places like assign_server() or back_handle_st_con() and a few
sample fetches looking for proxy protocol do check for L4+L6 but
don't care about HANDSHAKE ; these ones will probably fail on TCP
request session rules if the handshake is not complete.
- some handshake handlers do validate that a connection is established
at L4 but didn't clear CO_FL_WAIT_L4_CONN
- the ->ctl method of mux_fcgi, mux_pt and mux_h1 only checks for L4+L6
before declaring the mux ready while the snd_buf function also checks
for the handshake's completion. Likely the former should validate the
handshake as well and we should get rid of these extra tests in snd_buf.
- raw_sock_from_buf() would directly set CO_FL_CONNECTED and would only
later clear CO_FL_WAIT_L4_CONN.
- xprt_handshake would set CO_FL_CONNECTED itself without actually
clearing CO_FL_WAIT_L4_CONN, which could apparently happen only if
waiting for a pure Rx handshake.
- most places in ssl_sock that were checking CO_FL_CONNECTED don't need
to include the L4 check as an L6 check is enough to decide whether to
wait for more info or not.
It also becomes obvious when reading the test in si_cs_recv() that caused
the failure mentioned above that once converted it doesn't make any sense
anymore: having CS_FL_EOS set while still waiting for L4 and L6 to complete
cannot happen since for CS_FL_EOS to be set, the other ones must have been
validated.
Some of these parts will still deserve further cleanup, and some of the
observations above may induce some backports of potential bug fixes once
totally analyzed in their context. The risk of breaking existing stuff
is too high to blindly backport everything.
2020-01-23 03:11:58 -05:00
else if ( conn - > flags & CO_FL_WAIT_L4_CONN ) {
2013-12-04 05:17:05 -05:00
/* L4 not established (yet) */
2022-05-27 04:04:04 -04:00
if ( conn - > flags & CO_FL_ERROR | | sc_ep_test ( sc , SE_FL_ERROR ) )
2013-12-04 05:17:05 -05:00
set_server_check_status ( check , HCHK_STATUS_L4CON , err_msg ) ;
else if ( expired )
set_server_check_status ( check , HCHK_STATUS_L4TOUT , err_msg ) ;
2015-04-13 19:15:08 -04:00
/*
* might be due to a server IP change .
* Let ' s trigger a DNS resolution if none are currently running .
*/
2019-01-11 12:43:04 -05:00
if ( check - > server )
2020-12-23 12:49:16 -05:00
resolv_trigger_resolution ( check - > server - > resolv_requester ) ;
2015-04-13 19:15:08 -04:00
2013-12-04 05:17:05 -05:00
}
MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_*
Commit 477902bd2e ("MEDIUM: connections: Get ride of the xprt_done
callback.") broke the master CLI for a very obscure reason. It happens
that short requests immediately terminated by a shutdown are properly
received, CS_FL_EOS is correctly set, but in si_cs_recv(), we refrain
from setting CF_SHUTR on the channel because CO_FL_CONNECTED was not
yet set on the connection since we've not passed again through
conn_fd_handler() and it was not done in conn_complete_session(). While
commit a8a415d31a ("BUG/MEDIUM: connections: Set CO_FL_CONNECTED in
conn_complete_session()") fixed the issue, such accident may happen
again as the root cause is deeper and actually comes down to the fact
that CO_FL_CONNECTED is lazily set at various check points in the code
but not every time we drop one wait bit. It is not the first time we
face this situation.
Originally this flag was used to detect the transition between WAIT_*
and CONNECTED in order to call ->wake() from the FD handler. But since
at least 1.8-dev1 with commit 7bf3fa3c23 ("BUG/MAJOR: connection: update
CO_FL_CONNECTED before calling the data layer"), CO_FL_CONNECTED is
always synchronized against the two others before being checked. Moreover,
with the I/Os moved to tasklets, the decision to call the ->wake() function
is performed after the I/Os in si_cs_process() and equivalent, which don't
care about this transition either.
So in essence, checking for CO_FL_CONNECTED has become a lazy wait to
check for (CO_FL_WAIT_L4_CONN | CO_FL_WAIT_L6_CONN), but that always
relies on someone else having synchronized it.
This patch addresses it once for all by killing this flag and only checking
the two others (for which a composite mask CO_FL_WAIT_L4L6 was added). This
revealed a number of inconsistencies that were purposely not addressed here
for the sake of bisectability:
- while most places do check both L4+L6 and HANDSHAKE at the same time,
some places like assign_server() or back_handle_st_con() and a few
sample fetches looking for proxy protocol do check for L4+L6 but
don't care about HANDSHAKE ; these ones will probably fail on TCP
request session rules if the handshake is not complete.
- some handshake handlers do validate that a connection is established
at L4 but didn't clear CO_FL_WAIT_L4_CONN
- the ->ctl method of mux_fcgi, mux_pt and mux_h1 only checks for L4+L6
before declaring the mux ready while the snd_buf function also checks
for the handshake's completion. Likely the former should validate the
handshake as well and we should get rid of these extra tests in snd_buf.
- raw_sock_from_buf() would directly set CO_FL_CONNECTED and would only
later clear CO_FL_WAIT_L4_CONN.
- xprt_handshake would set CO_FL_CONNECTED itself without actually
clearing CO_FL_WAIT_L4_CONN, which could apparently happen only if
waiting for a pure Rx handshake.
- most places in ssl_sock that were checking CO_FL_CONNECTED don't need
to include the L4 check as an L6 check is enough to decide whether to
wait for more info or not.
It also becomes obvious when reading the test in si_cs_recv() that caused
the failure mentioned above that once converted it doesn't make any sense
anymore: having CS_FL_EOS set while still waiting for L4 and L6 to complete
cannot happen since for CS_FL_EOS to be set, the other ones must have been
validated.
Some of these parts will still deserve further cleanup, and some of the
observations above may induce some backports of potential bug fixes once
totally analyzed in their context. The risk of breaking existing stuff
is too high to blindly backport everything.
2020-01-23 03:11:58 -05:00
else if ( conn - > flags & CO_FL_WAIT_L6_CONN ) {
2013-12-04 05:17:05 -05:00
/* L6 not established (yet) */
2022-05-27 04:04:04 -04:00
if ( conn - > flags & CO_FL_ERROR | | sc_ep_test ( sc , SE_FL_ERROR ) )
2013-12-04 05:17:05 -05:00
set_server_check_status ( check , HCHK_STATUS_L6RSP , err_msg ) ;
else if ( expired )
set_server_check_status ( check , HCHK_STATUS_L6TOUT , err_msg ) ;
}
2022-05-27 04:04:04 -04:00
else if ( conn - > flags & CO_FL_ERROR | | sc_ep_test ( sc , SE_FL_ERROR ) ) {
2013-12-04 05:17:05 -05:00
/* I/O error after connection was established and before we could diagnose */
set_server_check_status ( check , HCHK_STATUS_SOCKERR , err_msg ) ;
}
else if ( expired ) {
2020-04-01 05:04:52 -04:00
enum healthcheck_status tout = HCHK_STATUS_L7TOUT ;
2013-12-04 05:17:05 -05:00
/* connection established but expired check */
2020-05-05 01:55:50 -04:00
if ( check - > current_step & & check - > current_step - > action = = TCPCHK_ACT_EXPECT & &
check - > current_step - > expect . tout_status ! = HCHK_STATUS_UNKNOWN )
2020-04-01 05:10:27 -04:00
tout = check - > current_step - > expect . tout_status ;
set_server_check_status ( check , tout , err_msg ) ;
2013-12-04 05:17:05 -05:00
}
2021-04-10 03:00:38 -04:00
TRACE_LEAVE ( CHK_EV_HCHK_END | CHK_EV_HCHK_ERR , check ) ;
2013-12-04 05:17:05 -05:00
return ;
}
2006-06-25 20:48:02 -04:00
2020-04-20 08:54:42 -04:00
/* Builds the server state header used by HTTP health-checks */
2020-06-05 06:25:38 -04:00
int httpchk_build_status_header ( struct server * s , struct buffer * buf )
2014-06-19 23:30:16 -04:00
{
2020-04-20 08:54:42 -04:00
int sv_state ;
int ratio ;
char addr [ 46 ] ;
char port [ 6 ] ;
const char * srv_hlt_st [ 7 ] = { " DOWN " , " DOWN %d/%d " ,
" UP %d/%d " , " UP " ,
" NOLB %d/%d " , " NOLB " ,
" no check " } ;
2014-06-19 23:30:16 -04:00
2020-04-20 08:54:42 -04:00
if ( ! ( s - > check . state & CHK_ST_ENABLED ) )
sv_state = 6 ;
else if ( s - > cur_state ! = SRV_ST_STOPPED ) {
if ( s - > check . health = = s - > check . rise + s - > check . fall - 1 )
sv_state = 3 ; /* UP */
else
sv_state = 2 ; /* going down */
2014-06-19 23:30:16 -04:00
2020-04-20 08:54:42 -04:00
if ( s - > cur_state = = SRV_ST_STOPPING )
sv_state + = 2 ;
} else {
if ( s - > check . health )
sv_state = 1 ; /* going up */
else
sv_state = 0 ; /* DOWN */
2014-06-19 23:30:16 -04:00
}
BUG/MEDIUM: external-checks: close all FDs right after the fork()
Lukas Erlacher reported an interesting problem : since we don't close
FDs after the fork() upon external checks, any script executed that
writes data on stdout/stderr will possibly send its data to wrong
places, very likely an existing connection.
After some analysis, the problem is even wider. It's not enough to
just close stdin/stdout/stderr, as all sockets are passed to the
sub-process, and as long as they're not closed, they are usable for
whatever mistake can be done. Furthermore with epoll, such FDs will
continue to be reported after a close() as the underlying file is
not closed yet.
CLOEXEC would be an acceptable workaround except that 1) it adds an
extra syscall on the fast path, and 2) we have no control over FDs
created by external libs (eg: openssl using /dev/crypto, libc using
/dev/random, lua using anything else), so in the end we still need
to close them all.
On some BSD systems there's a closefrom() syscall which could be
very useful for this.
Based on an insightful idea from Simon Horman, we don't close 0/1/2
when we're in verbose mode since they're properly connected to
stdin/stdout/stderr and can become quite useful during debugging
sessions to detect some script output errors or execve() failures.
This fix must be backported to 1.6.
2016-06-21 09:32:29 -04:00
2020-04-20 08:54:42 -04:00
chunk_appendf ( buf , srv_hlt_st [ sv_state ] ,
( s - > cur_state ! = SRV_ST_STOPPED ) ? ( s - > check . health - s - > check . rise + 1 ) : ( s - > check . health ) ,
( s - > cur_state ! = SRV_ST_STOPPED ) ? ( s - > check . fall ) : ( s - > check . rise ) ) ;
BUG/MEDIUM: external-checks: close all FDs right after the fork()
Lukas Erlacher reported an interesting problem : since we don't close
FDs after the fork() upon external checks, any script executed that
writes data on stdout/stderr will possibly send its data to wrong
places, very likely an existing connection.
After some analysis, the problem is even wider. It's not enough to
just close stdin/stdout/stderr, as all sockets are passed to the
sub-process, and as long as they're not closed, they are usable for
whatever mistake can be done. Furthermore with epoll, such FDs will
continue to be reported after a close() as the underlying file is
not closed yet.
CLOEXEC would be an acceptable workaround except that 1) it adds an
extra syscall on the fast path, and 2) we have no control over FDs
created by external libs (eg: openssl using /dev/crypto, libc using
/dev/random, lua using anything else), so in the end we still need
to close them all.
On some BSD systems there's a closefrom() syscall which could be
very useful for this.
Based on an insightful idea from Simon Horman, we don't close 0/1/2
when we're in verbose mode since they're properly connected to
stdin/stdout/stderr and can become quite useful during debugging
sessions to detect some script output errors or execve() failures.
This fix must be backported to 1.6.
2016-06-21 09:32:29 -04:00
2020-04-20 08:54:42 -04:00
addr_to_str ( & s - > addr , addr , sizeof ( addr ) ) ;
if ( s - > addr . ss_family = = AF_INET | | s - > addr . ss_family = = AF_INET6 )
snprintf ( port , sizeof ( port ) , " %u " , s - > svc_port ) ;
else
* port = 0 ;
BUG/MEDIUM: external-checks: close all FDs right after the fork()
Lukas Erlacher reported an interesting problem : since we don't close
FDs after the fork() upon external checks, any script executed that
writes data on stdout/stderr will possibly send its data to wrong
places, very likely an existing connection.
After some analysis, the problem is even wider. It's not enough to
just close stdin/stdout/stderr, as all sockets are passed to the
sub-process, and as long as they're not closed, they are usable for
whatever mistake can be done. Furthermore with epoll, such FDs will
continue to be reported after a close() as the underlying file is
not closed yet.
CLOEXEC would be an acceptable workaround except that 1) it adds an
extra syscall on the fast path, and 2) we have no control over FDs
created by external libs (eg: openssl using /dev/crypto, libc using
/dev/random, lua using anything else), so in the end we still need
to close them all.
On some BSD systems there's a closefrom() syscall which could be
very useful for this.
Based on an insightful idea from Simon Horman, we don't close 0/1/2
when we're in verbose mode since they're properly connected to
stdin/stdout/stderr and can become quite useful during debugging
sessions to detect some script output errors or execve() failures.
This fix must be backported to 1.6.
2016-06-21 09:32:29 -04:00
2020-04-20 08:54:42 -04:00
chunk_appendf ( buf , " ; address=%s; port=%s; name=%s/%s; node=%s; weight=%d/%d; scur=%d/%d; qcur=%d " ,
addr , port , s - > proxy - > id , s - > id ,
global . node ,
( s - > cur_eweight * s - > proxy - > lbprm . wmult + s - > proxy - > lbprm . wdiv - 1 ) / s - > proxy - > lbprm . wdiv ,
( s - > proxy - > lbprm . tot_weight * s - > proxy - > lbprm . wmult + s - > proxy - > lbprm . wdiv - 1 ) / s - > proxy - > lbprm . wdiv ,
2025-01-15 10:37:35 -05:00
s - > cur_sess , s - > proxy - > beconn - s - > proxy - > queueslength ,
s - > queueslength ) ;
2019-03-01 05:15:10 -05:00
2020-04-20 08:54:42 -04:00
if ( ( s - > cur_state = = SRV_ST_STARTING ) & &
2024-04-30 06:04:57 -04:00
ns_to_sec ( now_ns ) < s - > counters . last_change + s - > slowstart & &
ns_to_sec ( now_ns ) > = s - > counters . last_change ) {
ratio = MAX ( 1 , 100 * ( ns_to_sec ( now_ns ) - s - > counters . last_change ) / s - > slowstart ) ;
2020-04-20 08:54:42 -04:00
chunk_appendf ( buf , " ; throttle=%d%% " , ratio ) ;
}
2020-04-26 03:50:31 -04:00
2020-04-20 08:54:42 -04:00
return b_data ( buf ) ;
}
2020-04-26 03:50:31 -04:00
2020-06-05 06:25:38 -04:00
/**************************************************************************/
/***************** Health-checks based on connections *********************/
/**************************************************************************/
/* This function is used only for server health-checks. It handles connection
* status updates including errors . If necessary , it wakes the check task up .
* It returns 0 on normal cases , < 0 if at least one close ( ) has happened on the
* connection ( eg : reconnect ) . It relies on tcpcheck_main ( ) .
2020-04-20 08:54:42 -04:00
*/
2022-05-27 04:04:04 -04:00
int wake_srv_chk ( struct stconn * sc )
2020-04-20 08:54:42 -04:00
{
2021-12-15 03:50:17 -05:00
struct connection * conn ;
2022-05-27 04:04:04 -04:00
struct check * check = __sc_check ( sc ) ;
2020-06-05 06:25:38 -04:00
struct email_alertq * q = container_of ( check , typeof ( * q ) , check ) ;
int ret = 0 ;
2020-04-06 11:54:24 -04:00
2021-04-10 03:00:38 -04:00
TRACE_ENTER ( CHK_EV_HCHK_WAKE , check ) ;
2022-05-18 08:35:49 -04:00
if ( check - > result ! = CHK_RES_UNKNOWN )
goto end ;
2020-06-05 06:25:38 -04:00
if ( check - > server )
HA_SPIN_LOCK ( SERVER_LOCK , & check - > server - > lock ) ;
else
HA_SPIN_LOCK ( EMAIL_ALERTS_LOCK , & q - > lock ) ;
2020-04-06 11:54:24 -04:00
2020-06-05 06:25:38 -04:00
/* we may have to make progress on the TCP checks */
ret = tcpcheck_main ( check ) ;
2020-05-05 09:54:22 -04:00
2022-05-27 04:04:04 -04:00
sc = check - > sc ;
conn = sc_conn ( sc ) ;
2020-05-05 09:54:22 -04:00
2022-06-13 01:59:46 -04:00
if ( unlikely ( ! conn | | conn - > flags & CO_FL_ERROR | | sc_ep_test ( sc , SE_FL_ERROR ) ) ) {
2020-06-05 06:25:38 -04:00
/* We may get error reports bypassing the I/O handlers, typically
* the case when sending a pure TCP check which fails , then the I / O
* handlers above are not called . This is completely handled by the
* main processing task so let ' s simply wake it up . If we get here ,
* we expect errno to still be valid .
*/
2021-04-10 03:00:38 -04:00
TRACE_ERROR ( " report connection error " , CHK_EV_HCHK_WAKE | CHK_EV_HCHK_END | CHK_EV_HCHK_ERR , check ) ;
2020-06-05 06:25:38 -04:00
chk_report_conn_err ( check , errno , 0 ) ;
task_wakeup ( check - > task , TASK_WOKEN_IO ) ;
2020-04-06 11:54:24 -04:00
}
BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context
When a tcpcheck ruleset uses multiple connections, the existing one must be
closed and destroyed before openning the new one. This part is handled in
the tcpcheck_main() function, when called from the wake callback function
(wake_srv_chk). But it is indeed a problem, because this function may be
called from the mux layer. This means a mux may call the wake callback
function of the data layer, which may release the connection and the mux. It
is easy to see how it is hazardous. And actually, depending on the
scheduling, it leads to crashes.
Thus, we must avoid to release the connection in the wake callback context,
and move this part in the check's process function instead. To do so, we
rely on the CHK_ST_CLOSE_CONN flags. When a connection must be replaced by a
new one, this flag is set on the check, in tcpcheck_main() function, and the
check's task is woken up. Then, the connection is really closed in
process_chk_conn() function.
This patch must be backported as far as 2.2, with some adaptations however
because the code is not exactly the same.
2021-01-18 09:47:03 -05:00
if ( check - > result ! = CHK_RES_UNKNOWN | | ret = = - 1 ) {
2022-05-18 08:35:49 -04:00
/* Check complete or aborted. Wake the check task up to be sure
* the result is handled ASAP . */
2020-06-05 06:25:38 -04:00
ret = - 1 ;
task_wakeup ( check - > task , TASK_WOKEN_IO ) ;
2020-04-20 08:54:42 -04:00
}
2020-04-06 11:54:24 -04:00
2020-06-05 06:25:38 -04:00
if ( check - > server )
HA_SPIN_UNLOCK ( SERVER_LOCK , & check - > server - > lock ) ;
else
HA_SPIN_UNLOCK ( EMAIL_ALERTS_LOCK , & q - > lock ) ;
2020-04-06 11:54:24 -04:00
2022-05-18 08:35:49 -04:00
end :
2021-04-10 03:00:38 -04:00
TRACE_LEAVE ( CHK_EV_HCHK_WAKE , check ) ;
2020-04-20 08:54:42 -04:00
return ret ;
}
2020-04-06 11:54:24 -04:00
2020-06-05 06:25:38 -04:00
/* This function checks if any I/O is wanted, and if so, attempts to do so */
2022-05-18 08:50:30 -04:00
struct task * srv_chk_io_cb ( struct task * t , void * ctx , unsigned int state )
2020-04-20 08:54:42 -04:00
{
2022-05-27 04:04:04 -04:00
struct stconn * sc = ctx ;
2020-04-06 11:54:24 -04:00
2022-05-27 04:04:04 -04:00
wake_srv_chk ( sc ) ;
2020-06-05 06:25:38 -04:00
return NULL ;
2020-04-20 08:54:42 -04:00
}
2020-04-06 11:54:24 -04:00
2023-08-23 05:25:25 -04:00
/* returns <0, 0, >0 if check thread 1 is respectively less loaded than,
* equally as , or more loaded than thread 2. This is made to decide on
* migrations so a margin is applied in either direction . For ease of
* remembering the direction , consider this returns load1 - load2 .
*/
static inline int check_thread_cmp_load ( int thr1 , int thr2 )
{
uint t1_load = _HA_ATOMIC_LOAD ( & ha_thread_ctx [ thr1 ] . rq_total ) ;
uint t1_act = _HA_ATOMIC_LOAD ( & ha_thread_ctx [ thr1 ] . active_checks ) ;
uint t2_load = _HA_ATOMIC_LOAD ( & ha_thread_ctx [ thr2 ] . rq_total ) ;
uint t2_act = _HA_ATOMIC_LOAD ( & ha_thread_ctx [ thr2 ] . active_checks ) ;
/* twice as more active checks is a significant difference */
if ( t1_act * 2 < t2_act )
return - 1 ;
if ( t2_act * 2 < t1_act )
return 1 ;
/* twice as more rqload with more checks is also a significant
* difference .
*/
if ( t1_act < = t2_act & & t1_load * 2 < t2_load )
return - 1 ;
if ( t2_act < = t1_act & & t2_load * 2 < t1_load )
return 1 ;
/* otherwise they're roughly equal */
return 0 ;
}
2023-08-23 05:39:00 -04:00
/* returns <0, 0, >0 if check thread 1's active checks count is respectively
* higher than , equal , or lower than thread 2 ' s . This is made to decide on
* forced migrations upon overload , so only a very little margin is applied
* here ( ~ 1 % ) . For ease of remembering the direction , consider this returns
* active1 - active2 .
*/
static inline int check_thread_cmp_active ( int thr1 , int thr2 )
{
uint t1_act = _HA_ATOMIC_LOAD ( & ha_thread_ctx [ thr1 ] . active_checks ) ;
uint t2_act = _HA_ATOMIC_LOAD ( & ha_thread_ctx [ thr2 ] . active_checks ) ;
if ( t1_act * 128 > = t2_act * 129 )
return 1 ;
if ( t2_act * 128 > = t1_act * 129 )
return - 1 ;
return 0 ;
}
2023-08-23 05:25:25 -04:00
2020-06-05 06:25:38 -04:00
/* manages a server health-check that uses a connection. Returns
* the time the task accepts to wait , or TIME_ETERNITY for infinity .
2020-04-20 08:54:42 -04:00
*
* Please do NOT place any return statement in this function and only leave
2020-06-05 06:25:38 -04:00
* via the out_unlock label .
2020-04-20 08:54:42 -04:00
*/
2021-03-02 10:09:26 -05:00
struct task * process_chk_conn ( struct task * t , void * context , unsigned int state )
2020-04-20 08:54:42 -04:00
{
2020-06-05 06:25:38 -04:00
struct check * check = context ;
struct proxy * proxy = check - > proxy ;
2022-05-27 04:04:04 -04:00
struct stconn * sc ;
2021-05-06 10:01:18 -04:00
struct connection * conn ;
2020-06-05 06:25:38 -04:00
int rv ;
int expired = tick_is_expired ( t - > expire , now_ms ) ;
2020-03-26 12:38:49 -04:00
2021-04-10 03:00:38 -04:00
TRACE_ENTER ( CHK_EV_TASK_WAKE , check ) ;
MEDIUM: checks: spread the checks load over random threads
The CPU usage pattern was found to be high (5%) on a machine with
48 threads and only 100 servers checked every second That was
supposed to be only 100 connections per second, which should be very
cheap. It was figured that due to the check tasks unbinding from any
thread when going back to sleep, they're queued into the shared queue.
Not only this requires to manipulate the global queue lock, but in
addition it means that all threads have to check the global queue
before going to sleep (hence take a lock again) to figure how long
to sleep, and that they would all sleep only for the shortest amount
of time to the next check, one would pick it and all other ones would
go down to sleep waiting for the next check.
That's perfectly visible in time-to-first-byte measurements. A quick
test consisting in retrieving the stats page in CSV over a 48-thread
process checking 200 servers every 2 seconds shows the following tail:
percentile ttfb(ms)
99.98 2.43
99.985 5.72
99.99 32.96
99.995 82.176
99.996 82.944
99.9965 83.328
99.997 83.84
99.9975 84.288
99.998 85.12
99.9985 86.592
99.999 88
99.9995 89.728
99.9999 100.352
One solution could consist in forcefully binding checks to threads at
boot time, but that's annoying, will cause trouble for dynamic servers
and may cause some skew in the load depending on some server patterns.
Instead here we take a different approach. A check remains bound to its
thread for as long as possible, but upon every wakeup, the thread's load
is compared with another random thread's load. If it's found that that
other thread's load is less than half of the current one's, the task is
bounced to that thread. In order to prevent that new thread from doing
the same, we set a flag "CHK_ST_SLEEPING" that indicates that it just
woke up and we're bouncing the task only on this condition.
Tests have shown that the initial load was very unfair before, with a few
checks threads having a load of 15-20 and the vast majority having zero.
With this modification, after two "inter" delays, the load is either zero
or one everywhere when checks start. The same test shows a CPU usage that
significantly drops, between 0.5 and 1%. The same latency tail measurement
is much better, roughly 10 times smaller:
percentile ttfb(ms)
99.98 1.647
99.985 1.773
99.99 4.912
99.995 8.76
99.996 8.88
99.9965 8.944
99.997 9.016
99.9975 9.104
99.998 9.224
99.9985 9.416
99.999 9.8
99.9995 10.04
99.9999 10.432
In fact one difference here is that many threads work while in the past
they were waking up and going down to sleep after having perturbated the
shared lock. Thus it is anticipated that this will scale way smoother
than before. Under strace it's clearly visible that all threads are
sleeping for the time it takes to relaunch a check, there's no more
thundering herd wakeups.
However it is also possible that in some rare cases such as very short
check intervals smaller than a scheduler's timeslice (such as 4ms),
some users might have benefited from the work being concentrated on
less threads and would instead observe a small increase of apparent
CPU usage due to more total threads waking up even if that's for less
work each and less total work. That's visible with 200 servers at 4ms
where show activity shows that a few threads were overloaded and others
doing nothing. It's not a problem, though as in practice checks are not
supposed to eat much CPU and to wake up fast enough to represent a
significant load anyway, and the main issue they could have been
causing (aside the global lock) is an increase last-percentile latency.
2022-10-12 14:58:18 -04:00
if ( check - > state & CHK_ST_SLEEPING ) {
/* This check just restarted. It's still time to verify if
* we ' re on an overloaded thread or if a more suitable one is
* available . This helps spread the load over the available
* threads , without migrating too often . For this we ' ll check
* our load , and pick a random thread , check if it has less
* than half of the current thread ' s load , and if so we ' ll
* bounce the task there . It ' s possible because it ' s not yet
* tied to the current thread . The other thread will not bounce
2023-08-23 05:58:24 -04:00
* the task again because we ' re setting CHK_ST_READY indicating
* a migration .
MEDIUM: checks: spread the checks load over random threads
The CPU usage pattern was found to be high (5%) on a machine with
48 threads and only 100 servers checked every second That was
supposed to be only 100 connections per second, which should be very
cheap. It was figured that due to the check tasks unbinding from any
thread when going back to sleep, they're queued into the shared queue.
Not only this requires to manipulate the global queue lock, but in
addition it means that all threads have to check the global queue
before going to sleep (hence take a lock again) to figure how long
to sleep, and that they would all sleep only for the shortest amount
of time to the next check, one would pick it and all other ones would
go down to sleep waiting for the next check.
That's perfectly visible in time-to-first-byte measurements. A quick
test consisting in retrieving the stats page in CSV over a 48-thread
process checking 200 servers every 2 seconds shows the following tail:
percentile ttfb(ms)
99.98 2.43
99.985 5.72
99.99 32.96
99.995 82.176
99.996 82.944
99.9965 83.328
99.997 83.84
99.9975 84.288
99.998 85.12
99.9985 86.592
99.999 88
99.9995 89.728
99.9999 100.352
One solution could consist in forcefully binding checks to threads at
boot time, but that's annoying, will cause trouble for dynamic servers
and may cause some skew in the load depending on some server patterns.
Instead here we take a different approach. A check remains bound to its
thread for as long as possible, but upon every wakeup, the thread's load
is compared with another random thread's load. If it's found that that
other thread's load is less than half of the current one's, the task is
bounced to that thread. In order to prevent that new thread from doing
the same, we set a flag "CHK_ST_SLEEPING" that indicates that it just
woke up and we're bouncing the task only on this condition.
Tests have shown that the initial load was very unfair before, with a few
checks threads having a load of 15-20 and the vast majority having zero.
With this modification, after two "inter" delays, the load is either zero
or one everywhere when checks start. The same test shows a CPU usage that
significantly drops, between 0.5 and 1%. The same latency tail measurement
is much better, roughly 10 times smaller:
percentile ttfb(ms)
99.98 1.647
99.985 1.773
99.99 4.912
99.995 8.76
99.996 8.88
99.9965 8.944
99.997 9.016
99.9975 9.104
99.998 9.224
99.9985 9.416
99.999 9.8
99.9995 10.04
99.9999 10.432
In fact one difference here is that many threads work while in the past
they were waking up and going down to sleep after having perturbated the
shared lock. Thus it is anticipated that this will scale way smoother
than before. Under strace it's clearly visible that all threads are
sleeping for the time it takes to relaunch a check, there's no more
thundering herd wakeups.
However it is also possible that in some rare cases such as very short
check intervals smaller than a scheduler's timeslice (such as 4ms),
some users might have benefited from the work being concentrated on
less threads and would instead observe a small increase of apparent
CPU usage due to more total threads waking up even if that's for less
work each and less total work. That's visible with 200 servers at 4ms
where show activity shows that a few threads were overloaded and others
doing nothing. It's not a problem, though as in practice checks are not
supposed to eat much CPU and to wake up fast enough to represent a
significant load anyway, and the main issue they could have been
causing (aside the global lock) is an increase last-percentile latency.
2022-10-12 14:58:18 -04:00
*/
2023-08-23 05:39:00 -04:00
uint run_checks = _HA_ATOMIC_LOAD ( & th_ctx - > running_checks ) ;
MEDIUM: checks: spread the checks load over random threads
The CPU usage pattern was found to be high (5%) on a machine with
48 threads and only 100 servers checked every second That was
supposed to be only 100 connections per second, which should be very
cheap. It was figured that due to the check tasks unbinding from any
thread when going back to sleep, they're queued into the shared queue.
Not only this requires to manipulate the global queue lock, but in
addition it means that all threads have to check the global queue
before going to sleep (hence take a lock again) to figure how long
to sleep, and that they would all sleep only for the shortest amount
of time to the next check, one would pick it and all other ones would
go down to sleep waiting for the next check.
That's perfectly visible in time-to-first-byte measurements. A quick
test consisting in retrieving the stats page in CSV over a 48-thread
process checking 200 servers every 2 seconds shows the following tail:
percentile ttfb(ms)
99.98 2.43
99.985 5.72
99.99 32.96
99.995 82.176
99.996 82.944
99.9965 83.328
99.997 83.84
99.9975 84.288
99.998 85.12
99.9985 86.592
99.999 88
99.9995 89.728
99.9999 100.352
One solution could consist in forcefully binding checks to threads at
boot time, but that's annoying, will cause trouble for dynamic servers
and may cause some skew in the load depending on some server patterns.
Instead here we take a different approach. A check remains bound to its
thread for as long as possible, but upon every wakeup, the thread's load
is compared with another random thread's load. If it's found that that
other thread's load is less than half of the current one's, the task is
bounced to that thread. In order to prevent that new thread from doing
the same, we set a flag "CHK_ST_SLEEPING" that indicates that it just
woke up and we're bouncing the task only on this condition.
Tests have shown that the initial load was very unfair before, with a few
checks threads having a load of 15-20 and the vast majority having zero.
With this modification, after two "inter" delays, the load is either zero
or one everywhere when checks start. The same test shows a CPU usage that
significantly drops, between 0.5 and 1%. The same latency tail measurement
is much better, roughly 10 times smaller:
percentile ttfb(ms)
99.98 1.647
99.985 1.773
99.99 4.912
99.995 8.76
99.996 8.88
99.9965 8.944
99.997 9.016
99.9975 9.104
99.998 9.224
99.9985 9.416
99.999 9.8
99.9995 10.04
99.9999 10.432
In fact one difference here is that many threads work while in the past
they were waking up and going down to sleep after having perturbated the
shared lock. Thus it is anticipated that this will scale way smoother
than before. Under strace it's clearly visible that all threads are
sleeping for the time it takes to relaunch a check, there's no more
thundering herd wakeups.
However it is also possible that in some rare cases such as very short
check intervals smaller than a scheduler's timeslice (such as 4ms),
some users might have benefited from the work being concentrated on
less threads and would instead observe a small increase of apparent
CPU usage due to more total threads waking up even if that's for less
work each and less total work. That's visible with 200 servers at 4ms
where show activity shows that a few threads were overloaded and others
doing nothing. It's not a problem, though as in practice checks are not
supposed to eat much CPU and to wake up fast enough to represent a
significant load anyway, and the main issue they could have been
causing (aside the global lock) is an increase last-percentile latency.
2022-10-12 14:58:18 -04:00
uint my_load = HA_ATOMIC_LOAD ( & th_ctx - > rq_total ) ;
2023-08-23 05:39:00 -04:00
uint attempts = MIN ( global . nbthread , 3 ) ;
MEDIUM: checks: spread the checks load over random threads
The CPU usage pattern was found to be high (5%) on a machine with
48 threads and only 100 servers checked every second That was
supposed to be only 100 connections per second, which should be very
cheap. It was figured that due to the check tasks unbinding from any
thread when going back to sleep, they're queued into the shared queue.
Not only this requires to manipulate the global queue lock, but in
addition it means that all threads have to check the global queue
before going to sleep (hence take a lock again) to figure how long
to sleep, and that they would all sleep only for the shortest amount
of time to the next check, one would pick it and all other ones would
go down to sleep waiting for the next check.
That's perfectly visible in time-to-first-byte measurements. A quick
test consisting in retrieving the stats page in CSV over a 48-thread
process checking 200 servers every 2 seconds shows the following tail:
percentile ttfb(ms)
99.98 2.43
99.985 5.72
99.99 32.96
99.995 82.176
99.996 82.944
99.9965 83.328
99.997 83.84
99.9975 84.288
99.998 85.12
99.9985 86.592
99.999 88
99.9995 89.728
99.9999 100.352
One solution could consist in forcefully binding checks to threads at
boot time, but that's annoying, will cause trouble for dynamic servers
and may cause some skew in the load depending on some server patterns.
Instead here we take a different approach. A check remains bound to its
thread for as long as possible, but upon every wakeup, the thread's load
is compared with another random thread's load. If it's found that that
other thread's load is less than half of the current one's, the task is
bounced to that thread. In order to prevent that new thread from doing
the same, we set a flag "CHK_ST_SLEEPING" that indicates that it just
woke up and we're bouncing the task only on this condition.
Tests have shown that the initial load was very unfair before, with a few
checks threads having a load of 15-20 and the vast majority having zero.
With this modification, after two "inter" delays, the load is either zero
or one everywhere when checks start. The same test shows a CPU usage that
significantly drops, between 0.5 and 1%. The same latency tail measurement
is much better, roughly 10 times smaller:
percentile ttfb(ms)
99.98 1.647
99.985 1.773
99.99 4.912
99.995 8.76
99.996 8.88
99.9965 8.944
99.997 9.016
99.9975 9.104
99.998 9.224
99.9985 9.416
99.999 9.8
99.9995 10.04
99.9999 10.432
In fact one difference here is that many threads work while in the past
they were waking up and going down to sleep after having perturbated the
shared lock. Thus it is anticipated that this will scale way smoother
than before. Under strace it's clearly visible that all threads are
sleeping for the time it takes to relaunch a check, there's no more
thundering herd wakeups.
However it is also possible that in some rare cases such as very short
check intervals smaller than a scheduler's timeslice (such as 4ms),
some users might have benefited from the work being concentrated on
less threads and would instead observe a small increase of apparent
CPU usage due to more total threads waking up even if that's for less
work each and less total work. That's visible with 200 servers at 4ms
where show activity shows that a few threads were overloaded and others
doing nothing. It's not a problem, though as in practice checks are not
supposed to eat much CPU and to wake up fast enough to represent a
significant load anyway, and the main issue they could have been
causing (aside the global lock) is an increase last-percentile latency.
2022-10-12 14:58:18 -04:00
2023-08-31 10:06:10 -04:00
if ( check - > state & CHK_ST_READY ) {
2023-08-17 10:25:28 -04:00
/* check was migrated, active already counted */
2023-08-31 10:06:10 -04:00
activity [ tid ] . check_adopted + + ;
}
2023-08-17 10:25:28 -04:00
else {
2023-08-23 05:39:00 -04:00
/* first wakeup, let's check if another thread is less loaded
* than this one in order to smooth the load . If the current
* thread is not yet overloaded , we attempt an opportunistic
* migration to another thread that is not full and that is
* significantly less loaded . And if the current thread is
* already overloaded , we attempt a forced migration to a
* thread with less active checks . We try at most 3 random
* other thread .
*/
while ( attempts - - > 0 & &
2023-08-31 11:51:00 -04:00
( ! LIST_ISEMPTY ( & th_ctx - > queued_checks ) | | my_load > = 3 ) & &
_HA_ATOMIC_LOAD ( & th_ctx - > active_checks ) > = 3 ) {
2023-08-23 05:39:00 -04:00
uint new_tid = statistical_prng_range ( global . nbthread ) ;
if ( new_tid = = tid )
continue ;
BUILD: checks: shut up yet another stupid gcc warning
gcc has always had hallucinations regarding value ranges, and this one
is interesting, and affects branches 4.7 to 11.3 at least. When building
without threads, the randomly picked new_tid that is reduced to a multiply
by 1 shifted right 32 bits, hence a constant output of 0 shows this
warning:
src/check.c: In function 'process_chk_conn':
src/check.c:1150:32: warning: array subscript [-1, 0] is outside array bounds of 'struct thread_ctx[1]' [-Warray-bounds]
In file included from include/haproxy/thread.h:28,
from include/haproxy/list.h:26,
from include/haproxy/action.h:28,
from src/check.c:31:
or this one when trying to force the test to see that it cannot be zero(!):
src/check.c: In function 'process_chk_conn':
src/check.c:1150:54: warning: array subscript [0, 0] is outside array bounds of 'struct thread_ctx[1]' [-Warray-bounds]
1150 | uint t2_act = _HA_ATOMIC_LOAD(&ha_thread_ctx[thr2].active_checks);
| ~~~~~~~~~~~~~^~~~~~
include/haproxy/atomic.h:66:40: note: in definition of macro 'HA_ATOMIC_LOAD'
66 | #define HA_ATOMIC_LOAD(val) *(val)
| ^~~
src/check.c:1150:24: note: in expansion of macro '_HA_ATOMIC_LOAD'
1150 | uint t2_act = _HA_ATOMIC_LOAD(&ha_thread_ctx[thr2].active_checks);
| ^~~~~~~~~~~~~~~
Let's just add an ALREADY_CHECKED() statement there, no other check seems
to get rid of it. No backport is needed.
2023-09-04 10:46:01 -04:00
ALREADY_CHECKED ( new_tid ) ;
2023-08-23 05:39:00 -04:00
if ( check_thread_cmp_active ( tid , new_tid ) > 0 & &
( run_checks > = global . tune . max_checks_per_thread | |
check_thread_cmp_load ( tid , new_tid ) > 0 ) ) {
/* Found one. Let's migrate the task over there. We have to
* remove it from the WQ first and kill its expire time
* otherwise the scheduler will reinsert it and trigger a
* BUG_ON ( ) as we ' re not allowed to call task_queue ( ) for a
* foreign thread . The recipient will restore the expiration .
*/
check - > state | = CHK_ST_READY ;
HA_ATOMIC_INC ( & ha_thread_ctx [ new_tid ] . active_checks ) ;
task_unlink_wq ( t ) ;
t - > expire = TICK_ETERNITY ;
task_set_thread ( t , new_tid ) ;
task_wakeup ( t , TASK_WOKEN_MSG ) ;
TRACE_LEAVE ( CHK_EV_TASK_WAKE , check ) ;
return t ;
}
}
2023-08-17 10:25:28 -04:00
/* check just woke up, count it as active */
_HA_ATOMIC_INC ( & th_ctx - > active_checks ) ;
MEDIUM: checks: spread the checks load over random threads
The CPU usage pattern was found to be high (5%) on a machine with
48 threads and only 100 servers checked every second That was
supposed to be only 100 connections per second, which should be very
cheap. It was figured that due to the check tasks unbinding from any
thread when going back to sleep, they're queued into the shared queue.
Not only this requires to manipulate the global queue lock, but in
addition it means that all threads have to check the global queue
before going to sleep (hence take a lock again) to figure how long
to sleep, and that they would all sleep only for the shortest amount
of time to the next check, one would pick it and all other ones would
go down to sleep waiting for the next check.
That's perfectly visible in time-to-first-byte measurements. A quick
test consisting in retrieving the stats page in CSV over a 48-thread
process checking 200 servers every 2 seconds shows the following tail:
percentile ttfb(ms)
99.98 2.43
99.985 5.72
99.99 32.96
99.995 82.176
99.996 82.944
99.9965 83.328
99.997 83.84
99.9975 84.288
99.998 85.12
99.9985 86.592
99.999 88
99.9995 89.728
99.9999 100.352
One solution could consist in forcefully binding checks to threads at
boot time, but that's annoying, will cause trouble for dynamic servers
and may cause some skew in the load depending on some server patterns.
Instead here we take a different approach. A check remains bound to its
thread for as long as possible, but upon every wakeup, the thread's load
is compared with another random thread's load. If it's found that that
other thread's load is less than half of the current one's, the task is
bounced to that thread. In order to prevent that new thread from doing
the same, we set a flag "CHK_ST_SLEEPING" that indicates that it just
woke up and we're bouncing the task only on this condition.
Tests have shown that the initial load was very unfair before, with a few
checks threads having a load of 15-20 and the vast majority having zero.
With this modification, after two "inter" delays, the load is either zero
or one everywhere when checks start. The same test shows a CPU usage that
significantly drops, between 0.5 and 1%. The same latency tail measurement
is much better, roughly 10 times smaller:
percentile ttfb(ms)
99.98 1.647
99.985 1.773
99.99 4.912
99.995 8.76
99.996 8.88
99.9965 8.944
99.997 9.016
99.9975 9.104
99.998 9.224
99.9985 9.416
99.999 9.8
99.9995 10.04
99.9999 10.432
In fact one difference here is that many threads work while in the past
they were waking up and going down to sleep after having perturbated the
shared lock. Thus it is anticipated that this will scale way smoother
than before. Under strace it's clearly visible that all threads are
sleeping for the time it takes to relaunch a check, there's no more
thundering herd wakeups.
However it is also possible that in some rare cases such as very short
check intervals smaller than a scheduler's timeslice (such as 4ms),
some users might have benefited from the work being concentrated on
less threads and would instead observe a small increase of apparent
CPU usage due to more total threads waking up even if that's for less
work each and less total work. That's visible with 200 servers at 4ms
where show activity shows that a few threads were overloaded and others
doing nothing. It's not a problem, though as in practice checks are not
supposed to eat much CPU and to wake up fast enough to represent a
significant load anyway, and the main issue they could have been
causing (aside the global lock) is an increase last-percentile latency.
2022-10-12 14:58:18 -04:00
}
2023-09-01 01:27:56 -04:00
/* OK we're keeping it so this check is ours now */
task_set_thread ( t , tid ) ;
2023-08-23 05:58:24 -04:00
check - > state & = ~ CHK_ST_SLEEPING ;
MEDIUM: checks: implement a queue in order to limit concurrent checks
The progressive adoption of OpenSSL 3 and its abysmal handshake
performance has started to reveal situations where it simply isn't
possible anymore to succesfully run health checks on many servers,
because between the moment all the checks are started and the moment
the handshake finally completes, the timeout has expired!
This also has consequences on production traffic which gets
significantly delayed as well, all that for lots of checks. While it's
possible to increase the check delays, it doesn't solve everything as
checks still take a huge amount of time to converge in such conditions.
Here we take a different approach by permitting to enforce the maximum
concurrent checks per thread limitation and implementing an ordered
queue. Thanks to this, if a thread about to start a check has reached
its limit, it will add the check at the end of a queue and it will be
processed once another check is finished. This proves to be extremely
efficient, with all checks completing in a reasonable amount of time
and not being disturbed by the rest of the traffic from other checks.
They're just cycling slower, but at the speed the machine can handle.
One must understand however that if some complex checks perform multiple
exchanges, they will take a check slot for all the required duration.
This is why the limit is not enforced by default.
Tests on SSL show that a limit of 5-50 checks per thread on local
servers gives excellent results already, so that could be a good starting
point.
2023-08-31 10:54:22 -04:00
/* if we just woke up and the thread is full of running, or
* already has others waiting , we might have to wait in queue
* ( for health checks only ) . This means ! SLEEPING & & ! READY .
*/
if ( check - > server & &
( ! LIST_ISEMPTY ( & th_ctx - > queued_checks ) | |
( global . tune . max_checks_per_thread & &
_HA_ATOMIC_LOAD ( & th_ctx - > running_checks ) > = global . tune . max_checks_per_thread ) ) ) {
TRACE_DEVEL ( " health-check queued " , CHK_EV_TASK_WAKE , check ) ;
t - > expire = TICK_ETERNITY ;
LIST_APPEND ( & th_ctx - > queued_checks , & check - > check_queue ) ;
/* reset fastinter flag (if set) so that srv_getinter()
* only returns fastinter if server health is degraded
*/
check - > state & = ~ CHK_ST_FASTINTER ;
goto out_leave ;
}
2023-08-23 05:58:24 -04:00
/* OK let's run, now we cannot roll back anymore */
check - > state | = CHK_ST_READY ;
2023-08-31 10:06:10 -04:00
activity [ tid ] . check_started + + ;
2023-08-17 10:25:28 -04:00
_HA_ATOMIC_INC ( & th_ctx - > running_checks ) ;
MEDIUM: checks: spread the checks load over random threads
The CPU usage pattern was found to be high (5%) on a machine with
48 threads and only 100 servers checked every second That was
supposed to be only 100 connections per second, which should be very
cheap. It was figured that due to the check tasks unbinding from any
thread when going back to sleep, they're queued into the shared queue.
Not only this requires to manipulate the global queue lock, but in
addition it means that all threads have to check the global queue
before going to sleep (hence take a lock again) to figure how long
to sleep, and that they would all sleep only for the shortest amount
of time to the next check, one would pick it and all other ones would
go down to sleep waiting for the next check.
That's perfectly visible in time-to-first-byte measurements. A quick
test consisting in retrieving the stats page in CSV over a 48-thread
process checking 200 servers every 2 seconds shows the following tail:
percentile ttfb(ms)
99.98 2.43
99.985 5.72
99.99 32.96
99.995 82.176
99.996 82.944
99.9965 83.328
99.997 83.84
99.9975 84.288
99.998 85.12
99.9985 86.592
99.999 88
99.9995 89.728
99.9999 100.352
One solution could consist in forcefully binding checks to threads at
boot time, but that's annoying, will cause trouble for dynamic servers
and may cause some skew in the load depending on some server patterns.
Instead here we take a different approach. A check remains bound to its
thread for as long as possible, but upon every wakeup, the thread's load
is compared with another random thread's load. If it's found that that
other thread's load is less than half of the current one's, the task is
bounced to that thread. In order to prevent that new thread from doing
the same, we set a flag "CHK_ST_SLEEPING" that indicates that it just
woke up and we're bouncing the task only on this condition.
Tests have shown that the initial load was very unfair before, with a few
checks threads having a load of 15-20 and the vast majority having zero.
With this modification, after two "inter" delays, the load is either zero
or one everywhere when checks start. The same test shows a CPU usage that
significantly drops, between 0.5 and 1%. The same latency tail measurement
is much better, roughly 10 times smaller:
percentile ttfb(ms)
99.98 1.647
99.985 1.773
99.99 4.912
99.995 8.76
99.996 8.88
99.9965 8.944
99.997 9.016
99.9975 9.104
99.998 9.224
99.9985 9.416
99.999 9.8
99.9995 10.04
99.9999 10.432
In fact one difference here is that many threads work while in the past
they were waking up and going down to sleep after having perturbated the
shared lock. Thus it is anticipated that this will scale way smoother
than before. Under strace it's clearly visible that all threads are
sleeping for the time it takes to relaunch a check, there's no more
thundering herd wakeups.
However it is also possible that in some rare cases such as very short
check intervals smaller than a scheduler's timeslice (such as 4ms),
some users might have benefited from the work being concentrated on
less threads and would instead observe a small increase of apparent
CPU usage due to more total threads waking up even if that's for less
work each and less total work. That's visible with 200 servers at 4ms
where show activity shows that a few threads were overloaded and others
doing nothing. It's not a problem, though as in practice checks are not
supposed to eat much CPU and to wake up fast enough to represent a
significant load anyway, and the main issue they could have been
causing (aside the global lock) is an increase last-percentile latency.
2022-10-12 14:58:18 -04:00
}
2023-08-23 05:58:24 -04:00
/* at this point, CHK_ST_SLEEPING = 0 and CHK_ST_READY = 1*/
2020-06-05 06:25:38 -04:00
if ( check - > server )
HA_SPIN_LOCK ( SERVER_LOCK , & check - > server - > lock ) ;
2021-05-06 10:01:18 -04:00
MEDIUM: checks: spread the checks load over random threads
The CPU usage pattern was found to be high (5%) on a machine with
48 threads and only 100 servers checked every second That was
supposed to be only 100 connections per second, which should be very
cheap. It was figured that due to the check tasks unbinding from any
thread when going back to sleep, they're queued into the shared queue.
Not only this requires to manipulate the global queue lock, but in
addition it means that all threads have to check the global queue
before going to sleep (hence take a lock again) to figure how long
to sleep, and that they would all sleep only for the shortest amount
of time to the next check, one would pick it and all other ones would
go down to sleep waiting for the next check.
That's perfectly visible in time-to-first-byte measurements. A quick
test consisting in retrieving the stats page in CSV over a 48-thread
process checking 200 servers every 2 seconds shows the following tail:
percentile ttfb(ms)
99.98 2.43
99.985 5.72
99.99 32.96
99.995 82.176
99.996 82.944
99.9965 83.328
99.997 83.84
99.9975 84.288
99.998 85.12
99.9985 86.592
99.999 88
99.9995 89.728
99.9999 100.352
One solution could consist in forcefully binding checks to threads at
boot time, but that's annoying, will cause trouble for dynamic servers
and may cause some skew in the load depending on some server patterns.
Instead here we take a different approach. A check remains bound to its
thread for as long as possible, but upon every wakeup, the thread's load
is compared with another random thread's load. If it's found that that
other thread's load is less than half of the current one's, the task is
bounced to that thread. In order to prevent that new thread from doing
the same, we set a flag "CHK_ST_SLEEPING" that indicates that it just
woke up and we're bouncing the task only on this condition.
Tests have shown that the initial load was very unfair before, with a few
checks threads having a load of 15-20 and the vast majority having zero.
With this modification, after two "inter" delays, the load is either zero
or one everywhere when checks start. The same test shows a CPU usage that
significantly drops, between 0.5 and 1%. The same latency tail measurement
is much better, roughly 10 times smaller:
percentile ttfb(ms)
99.98 1.647
99.985 1.773
99.99 4.912
99.995 8.76
99.996 8.88
99.9965 8.944
99.997 9.016
99.9975 9.104
99.998 9.224
99.9985 9.416
99.999 9.8
99.9995 10.04
99.9999 10.432
In fact one difference here is that many threads work while in the past
they were waking up and going down to sleep after having perturbated the
shared lock. Thus it is anticipated that this will scale way smoother
than before. Under strace it's clearly visible that all threads are
sleeping for the time it takes to relaunch a check, there's no more
thundering herd wakeups.
However it is also possible that in some rare cases such as very short
check intervals smaller than a scheduler's timeslice (such as 4ms),
some users might have benefited from the work being concentrated on
less threads and would instead observe a small increase of apparent
CPU usage due to more total threads waking up even if that's for less
work each and less total work. That's visible with 200 servers at 4ms
where show activity shows that a few threads were overloaded and others
doing nothing. It's not a problem, though as in practice checks are not
supposed to eat much CPU and to wake up fast enough to represent a
significant load anyway, and the main issue they could have been
causing (aside the global lock) is an increase last-percentile latency.
2022-10-12 14:58:18 -04:00
if ( ! ( check - > state & ( CHK_ST_INPROGRESS | CHK_ST_IN_ALLOC | CHK_ST_OUT_ALLOC ) ) ) {
/* This task might have bounced from another overloaded thread, it
* needs an expiration timer that was supposed to be now , but that
* was erased during the bounce .
*/
2023-09-01 01:41:46 -04:00
if ( ! tick_isset ( t - > expire ) ) {
2024-11-15 09:34:46 -05:00
t - > expire = tick_add ( now_ms , 0 ) ;
2023-09-01 01:41:46 -04:00
expired = 0 ;
}
MEDIUM: checks: spread the checks load over random threads
The CPU usage pattern was found to be high (5%) on a machine with
48 threads and only 100 servers checked every second That was
supposed to be only 100 connections per second, which should be very
cheap. It was figured that due to the check tasks unbinding from any
thread when going back to sleep, they're queued into the shared queue.
Not only this requires to manipulate the global queue lock, but in
addition it means that all threads have to check the global queue
before going to sleep (hence take a lock again) to figure how long
to sleep, and that they would all sleep only for the shortest amount
of time to the next check, one would pick it and all other ones would
go down to sleep waiting for the next check.
That's perfectly visible in time-to-first-byte measurements. A quick
test consisting in retrieving the stats page in CSV over a 48-thread
process checking 200 servers every 2 seconds shows the following tail:
percentile ttfb(ms)
99.98 2.43
99.985 5.72
99.99 32.96
99.995 82.176
99.996 82.944
99.9965 83.328
99.997 83.84
99.9975 84.288
99.998 85.12
99.9985 86.592
99.999 88
99.9995 89.728
99.9999 100.352
One solution could consist in forcefully binding checks to threads at
boot time, but that's annoying, will cause trouble for dynamic servers
and may cause some skew in the load depending on some server patterns.
Instead here we take a different approach. A check remains bound to its
thread for as long as possible, but upon every wakeup, the thread's load
is compared with another random thread's load. If it's found that that
other thread's load is less than half of the current one's, the task is
bounced to that thread. In order to prevent that new thread from doing
the same, we set a flag "CHK_ST_SLEEPING" that indicates that it just
woke up and we're bouncing the task only on this condition.
Tests have shown that the initial load was very unfair before, with a few
checks threads having a load of 15-20 and the vast majority having zero.
With this modification, after two "inter" delays, the load is either zero
or one everywhere when checks start. The same test shows a CPU usage that
significantly drops, between 0.5 and 1%. The same latency tail measurement
is much better, roughly 10 times smaller:
percentile ttfb(ms)
99.98 1.647
99.985 1.773
99.99 4.912
99.995 8.76
99.996 8.88
99.9965 8.944
99.997 9.016
99.9975 9.104
99.998 9.224
99.9985 9.416
99.999 9.8
99.9995 10.04
99.9999 10.432
In fact one difference here is that many threads work while in the past
they were waking up and going down to sleep after having perturbated the
shared lock. Thus it is anticipated that this will scale way smoother
than before. Under strace it's clearly visible that all threads are
sleeping for the time it takes to relaunch a check, there's no more
thundering herd wakeups.
However it is also possible that in some rare cases such as very short
check intervals smaller than a scheduler's timeslice (such as 4ms),
some users might have benefited from the work being concentrated on
less threads and would instead observe a small increase of apparent
CPU usage due to more total threads waking up even if that's for less
work each and less total work. That's visible with 200 servers at 4ms
where show activity shows that a few threads were overloaded and others
doing nothing. It's not a problem, though as in practice checks are not
supposed to eat much CPU and to wake up fast enough to represent a
significant load anyway, and the main issue they could have been
causing (aside the global lock) is an increase last-percentile latency.
2022-10-12 14:58:18 -04:00
}
2021-07-29 09:51:45 -04:00
if ( unlikely ( check - > state & CHK_ST_PURGE ) ) {
TRACE_STATE ( " health-check state to purge " , CHK_EV_TASK_WAKE , check ) ;
}
else if ( ! ( check - > state & ( CHK_ST_INPROGRESS ) ) ) {
2022-12-06 12:20:56 -05:00
/* no check currently running, but we might have been woken up
* before the timer ' s expiration to update it according to a
* new state ( e . g . fastinter ) , in which case we ' ll reprogram
* the new timer .
*/
2023-09-01 01:41:46 -04:00
if ( ! tick_is_expired ( t - > expire , now_ms ) ) { /* woke up too early */
2022-12-06 12:20:56 -05:00
if ( check - > server ) {
int new_exp = tick_add ( now_ms , MS_TO_TICKS ( srv_getinter ( check ) ) ) ;
if ( tick_is_expired ( new_exp , t - > expire ) ) {
TRACE_STATE ( " health-check was advanced " , CHK_EV_TASK_WAKE , check ) ;
goto update_timer ;
}
}
2021-04-10 03:00:38 -04:00
TRACE_STATE ( " health-check wake up too early " , CHK_EV_TASK_WAKE , check ) ;
2020-06-05 06:25:38 -04:00
goto out_unlock ;
2021-04-10 03:00:38 -04:00
}
2020-04-09 17:13:54 -04:00
2020-06-05 06:25:38 -04:00
/* we don't send any health-checks when the proxy is
* stopped , the server should not be checked or the check
* is disabled .
*/
if ( ( ( check - > state & ( CHK_ST_ENABLED | CHK_ST_PAUSED ) ) ! = CHK_ST_ENABLED ) | |
2021-10-06 08:24:19 -04:00
( proxy - > flags & ( PR_FL_DISABLED | PR_FL_STOPPED ) ) ) {
2021-04-10 03:00:38 -04:00
TRACE_STATE ( " health-check paused or disabled " , CHK_EV_TASK_WAKE , check ) ;
2020-06-05 06:25:38 -04:00
goto reschedule ;
2021-04-10 03:00:38 -04:00
}
2020-04-09 17:13:54 -04:00
2020-06-05 06:25:38 -04:00
/* we'll initiate a new check */
set_server_check_status ( check , HCHK_STATUS_START , NULL ) ;
2020-04-09 17:13:54 -04:00
2020-06-05 06:25:38 -04:00
check - > state | = CHK_ST_INPROGRESS ;
2021-04-10 03:00:38 -04:00
TRACE_STATE ( " init new health-check " , CHK_EV_TASK_WAKE | CHK_EV_HCHK_START , check ) ;
2020-04-09 17:13:54 -04:00
2020-06-05 06:25:38 -04:00
check - > current_step = NULL ;
2022-03-23 10:15:29 -04:00
2022-05-27 04:04:04 -04:00
check - > sc = sc_new_from_check ( check , SC_FL_NONE ) ;
if ( ! check - > sc ) {
2022-04-12 11:47:07 -04:00
set_server_check_status ( check , HCHK_STATUS_SOCKERR , NULL ) ;
goto end ;
2022-03-23 10:15:29 -04:00
}
2020-06-05 06:25:38 -04:00
tcpcheck_main ( check ) ;
2021-05-06 10:01:18 -04:00
expired = 0 ;
2020-04-20 08:54:42 -04:00
}
2021-05-06 10:01:18 -04:00
/* there was a test running.
* First , let ' s check whether there was an uncaught error ,
* which can happen on connect timeout or error .
*/
2021-07-29 09:51:45 -04:00
if ( check - > result = = CHK_RES_UNKNOWN & & likely ( ! ( check - > state & CHK_ST_PURGE ) ) ) {
2022-05-27 04:04:04 -04:00
sc = check - > sc ;
2022-06-13 01:59:46 -04:00
conn = sc_conn ( sc ) ;
2022-04-12 11:47:07 -04:00
2021-05-06 10:01:18 -04:00
/* Here the connection must be defined. Otherwise the
* error would have already been detected
2020-06-05 06:25:38 -04:00
*/
2022-05-27 04:04:04 -04:00
if ( ( conn & & ( ( conn - > flags & CO_FL_ERROR ) | | sc_ep_test ( sc , SE_FL_ERROR ) ) ) | | expired ) {
2021-05-06 10:01:18 -04:00
TRACE_ERROR ( " report connection error " , CHK_EV_TASK_WAKE | CHK_EV_HCHK_END | CHK_EV_HCHK_ERR , check ) ;
chk_report_conn_err ( check , 0 , expired ) ;
}
else {
if ( check - > state & CHK_ST_CLOSE_CONN ) {
TRACE_DEVEL ( " closing current connection " , CHK_EV_TASK_WAKE | CHK_EV_HCHK_RUN , check ) ;
check - > state & = ~ CHK_ST_CLOSE_CONN ;
2022-05-27 04:04:04 -04:00
if ( ! sc_reset_endp ( check - > sc ) ) {
2022-04-28 12:25:24 -04:00
/* error will be handled by tcpcheck_main().
2022-05-17 11:04:55 -04:00
* On success , remove all flags except SE_FL_DETACHED
2022-04-28 12:25:24 -04:00
*/
2022-05-27 04:04:04 -04:00
sc_ep_clr ( check - > sc , ~ SE_FL_DETACHED ) ;
2022-04-28 12:25:24 -04:00
}
2021-05-06 10:01:18 -04:00
tcpcheck_main ( check ) ;
2020-06-05 06:25:38 -04:00
}
2021-05-06 10:01:18 -04:00
if ( check - > result = = CHK_RES_UNKNOWN ) {
TRACE_DEVEL ( " health-check not expired " , CHK_EV_TASK_WAKE | CHK_EV_HCHK_RUN , check ) ;
goto out_unlock ; /* timeout not reached, wait again */
BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context
When a tcpcheck ruleset uses multiple connections, the existing one must be
closed and destroyed before openning the new one. This part is handled in
the tcpcheck_main() function, when called from the wake callback function
(wake_srv_chk). But it is indeed a problem, because this function may be
called from the mux layer. This means a mux may call the wake callback
function of the data layer, which may release the connection and the mux. It
is easy to see how it is hazardous. And actually, depending on the
scheduling, it leads to crashes.
Thus, we must avoid to release the connection in the wake callback context,
and move this part in the check's process function instead. To do so, we
rely on the CHK_ST_CLOSE_CONN flags. When a connection must be replaced by a
new one, this flag is set on the check, in tcpcheck_main() function, and the
check's task is woken up. Then, the connection is really closed in
process_chk_conn() function.
This patch must be backported as far as 2.2, with some adaptations however
because the code is not exactly the same.
2021-01-18 09:47:03 -05:00
}
2020-04-20 08:54:42 -04:00
}
2021-05-06 10:01:18 -04:00
}
2020-04-09 17:13:54 -04:00
2021-05-06 10:01:18 -04:00
/* check complete or aborted */
TRACE_STATE ( " health-check complete or aborted " , CHK_EV_TASK_WAKE | CHK_EV_HCHK_END , check ) ;
2020-04-01 10:27:05 -04:00
2022-06-13 01:59:46 -04:00
/* check->sc may be NULL when the healthcheck is purged */
2021-05-06 10:01:18 -04:00
check - > current_step = NULL ;
2022-05-27 04:04:04 -04:00
sc = check - > sc ;
conn = ( sc ? sc_conn ( sc ) : NULL ) ;
2020-04-01 10:27:05 -04:00
2021-05-06 10:01:18 -04:00
if ( conn & & conn - > xprt ) {
/* The check was aborted and the connection was not yet closed.
* This can happen upon timeout , or when an external event such
* as a failed response coupled with " observe layer7 " caused the
* server state to be suddenly changed .
*/
2024-04-16 12:36:40 -04:00
se_shutdown ( sc - > sedesc , SE_SHR_DRAIN | SE_SHW_SILENT ) ;
2021-05-06 10:01:18 -04:00
}
2020-04-01 10:27:05 -04:00
2022-05-27 04:04:04 -04:00
if ( sc ) {
sc_destroy ( sc ) ;
2023-05-17 03:25:32 -04:00
check - > sc = NULL ;
2022-04-12 11:47:07 -04:00
}
2020-06-05 06:25:38 -04:00
2021-05-06 10:01:18 -04:00
if ( check - > sess ! = NULL ) {
vars_prune ( & check - > vars , check - > sess , NULL ) ;
session_free ( check - > sess ) ;
check - > sess = NULL ;
}
2020-06-05 06:25:38 -04:00
2022-03-24 05:27:02 -04:00
end :
2021-07-29 09:51:45 -04:00
if ( check - > server & & likely ( ! ( check - > state & CHK_ST_PURGE ) ) ) {
2021-05-06 10:01:18 -04:00
if ( check - > result = = CHK_RES_FAILED ) {
/* a failure or timeout detected */
TRACE_DEVEL ( " report failure " , CHK_EV_TASK_WAKE | CHK_EV_HCHK_END | CHK_EV_HCHK_ERR , check ) ;
check_notify_failure ( check ) ;
2020-04-20 08:54:42 -04:00
}
2021-05-06 10:01:18 -04:00
else if ( check - > result = = CHK_RES_CONDPASS ) {
/* check is OK but asks for stopping mode */
TRACE_DEVEL ( " report conditional success " , CHK_EV_TASK_WAKE | CHK_EV_HCHK_END | CHK_EV_HCHK_SUCC , check ) ;
check_notify_stopping ( check ) ;
}
else if ( check - > result = = CHK_RES_PASSED ) {
/* a success was detected */
TRACE_DEVEL ( " report success " , CHK_EV_TASK_WAKE | CHK_EV_HCHK_END | CHK_EV_HCHK_SUCC , check ) ;
check_notify_success ( check ) ;
}
}
2022-05-18 08:24:43 -04:00
2024-04-24 12:44:03 -04:00
b_dequeue ( & check - > buf_wait ) ;
2022-05-18 08:24:43 -04:00
2021-05-06 10:01:18 -04:00
check_release_buf ( check , & check - > bi ) ;
check_release_buf ( check , & check - > bo ) ;
2023-08-17 10:25:28 -04:00
_HA_ATOMIC_DEC ( & th_ctx - > running_checks ) ;
_HA_ATOMIC_DEC ( & th_ctx - > active_checks ) ;
2021-05-06 10:01:18 -04:00
check - > state & = ~ ( CHK_ST_INPROGRESS | CHK_ST_IN_ALLOC | CHK_ST_OUT_ALLOC ) ;
2023-08-23 05:58:24 -04:00
check - > state & = ~ CHK_ST_READY ;
MEDIUM: checks: spread the checks load over random threads
The CPU usage pattern was found to be high (5%) on a machine with
48 threads and only 100 servers checked every second That was
supposed to be only 100 connections per second, which should be very
cheap. It was figured that due to the check tasks unbinding from any
thread when going back to sleep, they're queued into the shared queue.
Not only this requires to manipulate the global queue lock, but in
addition it means that all threads have to check the global queue
before going to sleep (hence take a lock again) to figure how long
to sleep, and that they would all sleep only for the shortest amount
of time to the next check, one would pick it and all other ones would
go down to sleep waiting for the next check.
That's perfectly visible in time-to-first-byte measurements. A quick
test consisting in retrieving the stats page in CSV over a 48-thread
process checking 200 servers every 2 seconds shows the following tail:
percentile ttfb(ms)
99.98 2.43
99.985 5.72
99.99 32.96
99.995 82.176
99.996 82.944
99.9965 83.328
99.997 83.84
99.9975 84.288
99.998 85.12
99.9985 86.592
99.999 88
99.9995 89.728
99.9999 100.352
One solution could consist in forcefully binding checks to threads at
boot time, but that's annoying, will cause trouble for dynamic servers
and may cause some skew in the load depending on some server patterns.
Instead here we take a different approach. A check remains bound to its
thread for as long as possible, but upon every wakeup, the thread's load
is compared with another random thread's load. If it's found that that
other thread's load is less than half of the current one's, the task is
bounced to that thread. In order to prevent that new thread from doing
the same, we set a flag "CHK_ST_SLEEPING" that indicates that it just
woke up and we're bouncing the task only on this condition.
Tests have shown that the initial load was very unfair before, with a few
checks threads having a load of 15-20 and the vast majority having zero.
With this modification, after two "inter" delays, the load is either zero
or one everywhere when checks start. The same test shows a CPU usage that
significantly drops, between 0.5 and 1%. The same latency tail measurement
is much better, roughly 10 times smaller:
percentile ttfb(ms)
99.98 1.647
99.985 1.773
99.99 4.912
99.995 8.76
99.996 8.88
99.9965 8.944
99.997 9.016
99.9975 9.104
99.998 9.224
99.9985 9.416
99.999 9.8
99.9995 10.04
99.9999 10.432
In fact one difference here is that many threads work while in the past
they were waking up and going down to sleep after having perturbated the
shared lock. Thus it is anticipated that this will scale way smoother
than before. Under strace it's clearly visible that all threads are
sleeping for the time it takes to relaunch a check, there's no more
thundering herd wakeups.
However it is also possible that in some rare cases such as very short
check intervals smaller than a scheduler's timeslice (such as 4ms),
some users might have benefited from the work being concentrated on
less threads and would instead observe a small increase of apparent
CPU usage due to more total threads waking up even if that's for less
work each and less total work. That's visible with 200 servers at 4ms
where show activity shows that a few threads were overloaded and others
doing nothing. It's not a problem, though as in practice checks are not
supposed to eat much CPU and to wake up fast enough to represent a
significant load anyway, and the main issue they could have been
causing (aside the global lock) is an increase last-percentile latency.
2022-10-12 14:58:18 -04:00
check - > state | = CHK_ST_SLEEPING ;
2021-05-06 10:01:18 -04:00
2022-12-06 12:20:56 -05:00
update_timer :
MEDIUM: checks: implement a queue in order to limit concurrent checks
The progressive adoption of OpenSSL 3 and its abysmal handshake
performance has started to reveal situations where it simply isn't
possible anymore to succesfully run health checks on many servers,
because between the moment all the checks are started and the moment
the handshake finally completes, the timeout has expired!
This also has consequences on production traffic which gets
significantly delayed as well, all that for lots of checks. While it's
possible to increase the check delays, it doesn't solve everything as
checks still take a huge amount of time to converge in such conditions.
Here we take a different approach by permitting to enforce the maximum
concurrent checks per thread limitation and implementing an ordered
queue. Thanks to this, if a thread about to start a check has reached
its limit, it will add the check at the end of a queue and it will be
processed once another check is finished. This proves to be extremely
efficient, with all checks completing in a reasonable amount of time
and not being disturbed by the rest of the traffic from other checks.
They're just cycling slower, but at the speed the machine can handle.
One must understand however that if some complex checks perform multiple
exchanges, they will take a check slot for all the required duration.
This is why the limit is not enforced by default.
Tests on SSL show that a limit of 5-50 checks per thread on local
servers gives excellent results already, so that could be a good starting
point.
2023-08-31 10:54:22 -04:00
/* when going to sleep, we need to check if other checks are waiting
* for a slot . If so we pick them out of the queue and wake them up .
*/
if ( check - > server & & ( check - > state & CHK_ST_SLEEPING ) ) {
if ( ! LIST_ISEMPTY ( & th_ctx - > queued_checks ) & &
_HA_ATOMIC_LOAD ( & th_ctx - > running_checks ) < global . tune . max_checks_per_thread ) {
struct check * next_chk = LIST_ELEM ( th_ctx - > queued_checks . n , struct check * , check_queue ) ;
/* wake up pending task */
LIST_DEL_INIT ( & next_chk - > check_queue ) ;
activity [ tid ] . check_started + + ;
_HA_ATOMIC_INC ( & th_ctx - > running_checks ) ;
next_chk - > state | = CHK_ST_READY ;
/* now running */
task_wakeup ( next_chk - > task , TASK_WOKEN_RES ) ;
}
}
2021-05-06 10:01:18 -04:00
if ( check - > server ) {
rv = 0 ;
if ( global . spread_checks > 0 ) {
rv = srv_getinter ( check ) * global . spread_checks / 100 ;
2022-10-12 15:48:17 -04:00
rv - = ( int ) ( 2 * rv * ( statistical_prng ( ) / 4294967295.0 ) ) ;
2020-04-20 08:54:42 -04:00
}
2021-05-06 10:01:18 -04:00
t - > expire = tick_add ( now_ms , MS_TO_TICKS ( srv_getinter ( check ) + rv ) ) ;
2022-12-07 06:17:24 -05:00
/* reset fastinter flag (if set) so that srv_getinter()
* only returns fastinter if server health is degraded
*/
check - > state & = ~ CHK_ST_FASTINTER ;
2020-04-20 08:54:42 -04:00
}
2020-06-05 06:25:38 -04:00
reschedule :
2023-05-16 12:07:51 -04:00
if ( proxy - > flags & ( PR_FL_DISABLED | PR_FL_STOPPED ) )
t - > expire = TICK_ETERNITY ;
else {
while ( tick_is_expired ( t - > expire , now_ms ) )
t - > expire = tick_add ( t - > expire , MS_TO_TICKS ( check - > inter ) ) ;
}
2020-06-05 06:25:38 -04:00
out_unlock :
if ( check - > server )
HA_SPIN_UNLOCK ( SERVER_LOCK , & check - > server - > lock ) ;
2021-04-10 03:00:38 -04:00
MEDIUM: checks: implement a queue in order to limit concurrent checks
The progressive adoption of OpenSSL 3 and its abysmal handshake
performance has started to reveal situations where it simply isn't
possible anymore to succesfully run health checks on many servers,
because between the moment all the checks are started and the moment
the handshake finally completes, the timeout has expired!
This also has consequences on production traffic which gets
significantly delayed as well, all that for lots of checks. While it's
possible to increase the check delays, it doesn't solve everything as
checks still take a huge amount of time to converge in such conditions.
Here we take a different approach by permitting to enforce the maximum
concurrent checks per thread limitation and implementing an ordered
queue. Thanks to this, if a thread about to start a check has reached
its limit, it will add the check at the end of a queue and it will be
processed once another check is finished. This proves to be extremely
efficient, with all checks completing in a reasonable amount of time
and not being disturbed by the rest of the traffic from other checks.
They're just cycling slower, but at the speed the machine can handle.
One must understand however that if some complex checks perform multiple
exchanges, they will take a check slot for all the required duration.
This is why the limit is not enforced by default.
Tests on SSL show that a limit of 5-50 checks per thread on local
servers gives excellent results already, so that could be a good starting
point.
2023-08-31 10:54:22 -04:00
out_leave :
2021-04-10 03:00:38 -04:00
TRACE_LEAVE ( CHK_EV_TASK_WAKE , check ) ;
2021-07-29 09:51:45 -04:00
/* Free the check if set to PURGE. After this, the check instance may be
2021-08-25 09:34:53 -04:00
* freed via the srv_drop invocation , so it must not be accessed after
* this point .
2021-07-29 09:51:45 -04:00
*/
if ( unlikely ( check - > state & CHK_ST_PURGE ) ) {
2021-08-10 10:23:49 -04:00
free_check ( check ) ;
2021-08-09 09:09:17 -04:00
if ( check - > server )
2021-08-25 09:34:53 -04:00
srv_drop ( check - > server ) ;
2021-08-10 10:23:49 -04:00
t = NULL ;
2021-07-29 09:51:45 -04:00
}
2020-06-05 06:25:38 -04:00
return t ;
2020-04-01 10:27:05 -04:00
}
2020-06-05 06:25:38 -04:00
2020-04-20 08:54:42 -04:00
/**************************************************************************/
/************************** Init/deinit checks ****************************/
/**************************************************************************/
BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
Historically, the input and output buffers of a check are allocated by hand
during the startup, with a specific size (not necessarily the same than
other buffers). But since the recent refactoring of the checks to rely
exclusively on the tcp-checks and to use the underlying mux layer, this part
is totally buggy. Indeed, because these buffers are now passed to a mux,
they maybe be swapped if a zero-copy is possible. In fact, for now it is
only possible in h2_rcv_buf(). Thus the bug concretely only exists if a h2
health-check is performed. But, it is a latent bug for other muxes.
Another problem is the size of these buffers. because it may differ for the
other buffer size, it might be source of bugs.
Finally, for configurations with hundreds of thousands of servers, having 2
buffers per check always allocated may be an issue.
To fix the bug, we now allocate these buffers when required using the buffer
pool. Thus not-running checks don't waste memory and muxes may swap them if
possible. The only drawback is the check buffers have now always the same
size than buffers used by the streams. This deprecates indirectly the
"tune.chksize" global option.
In addition, the http-check regtest have been update to perform some h2
health-checks.
Many thanks to @VigneshSP94 for its help on this bug.
This patch should solve the issue #936. It relies on the commit "MINOR:
tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main".
Both must be backport as far as 2.2.
bla
2020-11-25 07:47:00 -05:00
/*
* Tries to grab a buffer and to re - enables processing on check < target > . The
* check flags are used to figure what buffer was requested . It returns 1 if the
* allocation succeeds , in which case the I / O tasklet is woken up , or 0 if it ' s
* impossible to wake up and we prefer to be woken up later .
*/
int check_buf_available ( void * target )
2020-04-20 08:54:42 -04:00
{
BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
Historically, the input and output buffers of a check are allocated by hand
during the startup, with a specific size (not necessarily the same than
other buffers). But since the recent refactoring of the checks to rely
exclusively on the tcp-checks and to use the underlying mux layer, this part
is totally buggy. Indeed, because these buffers are now passed to a mux,
they maybe be swapped if a zero-copy is possible. In fact, for now it is
only possible in h2_rcv_buf(). Thus the bug concretely only exists if a h2
health-check is performed. But, it is a latent bug for other muxes.
Another problem is the size of these buffers. because it may differ for the
other buffer size, it might be source of bugs.
Finally, for configurations with hundreds of thousands of servers, having 2
buffers per check always allocated may be an issue.
To fix the bug, we now allocate these buffers when required using the buffer
pool. Thus not-running checks don't waste memory and muxes may swap them if
possible. The only drawback is the check buffers have now always the same
size than buffers used by the streams. This deprecates indirectly the
"tune.chksize" global option.
In addition, the http-check regtest have been update to perform some h2
health-checks.
Many thanks to @VigneshSP94 for its help on this bug.
This patch should solve the issue #936. It relies on the commit "MINOR:
tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main".
Both must be backport as far as 2.2.
bla
2020-11-25 07:47:00 -05:00
struct check * check = target ;
2022-05-27 04:04:04 -04:00
BUG_ON ( ! check - > sc ) ;
2022-05-18 09:57:15 -04:00
MINOR: dynbuf: pass a criticality argument to b_alloc()
The goal is to indicate how critical the allocation is, between the
least one (growing an existing buffer ring) and the topmost one (boot
time allocation for the life of the process).
The 3 tcp-based muxes (h1, h2, fcgi) use a common allocation function
to try to allocate otherwise subscribe. There's currently no distinction
of direction nor part that tries to allocate, and this should be revisited
to improve this situation, particularly when we consider that mux-h2 can
reduce its Tx allocations if needed.
For now, 4 main levels are planned, to translate how the data travels
inside haproxy from a producer to a consumer:
- MUX_RX: buffer used to receive data from the OS
- SE_RX: buffer used to place a transformation of the RX data for
a mux, or to produce a response for an applet
- CHANNEL: the channel buffer for sync recv
- MUX_TX: buffer used to transfer data from the channel to the outside,
generally a mux but there can be a few specificities (e.g.
http client's response buffer passed to the application,
which also gets a transformation of the channel data).
The other levels are a bit different in that they don't strictly need to
allocate for the first two ones, or they're permanent for the last one
(used by compression).
2024-04-16 02:55:20 -04:00
if ( ( check - > state & CHK_ST_IN_ALLOC ) & & b_alloc ( & check - > bi , DB_CHANNEL ) ) {
2021-04-10 03:00:38 -04:00
TRACE_STATE ( " unblocking check, input buffer allocated " , CHK_EV_TCPCHK_EXP | CHK_EV_RX_BLK , check ) ;
BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
Historically, the input and output buffers of a check are allocated by hand
during the startup, with a specific size (not necessarily the same than
other buffers). But since the recent refactoring of the checks to rely
exclusively on the tcp-checks and to use the underlying mux layer, this part
is totally buggy. Indeed, because these buffers are now passed to a mux,
they maybe be swapped if a zero-copy is possible. In fact, for now it is
only possible in h2_rcv_buf(). Thus the bug concretely only exists if a h2
health-check is performed. But, it is a latent bug for other muxes.
Another problem is the size of these buffers. because it may differ for the
other buffer size, it might be source of bugs.
Finally, for configurations with hundreds of thousands of servers, having 2
buffers per check always allocated may be an issue.
To fix the bug, we now allocate these buffers when required using the buffer
pool. Thus not-running checks don't waste memory and muxes may swap them if
possible. The only drawback is the check buffers have now always the same
size than buffers used by the streams. This deprecates indirectly the
"tune.chksize" global option.
In addition, the http-check regtest have been update to perform some h2
health-checks.
Many thanks to @VigneshSP94 for its help on this bug.
This patch should solve the issue #936. It relies on the commit "MINOR:
tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main".
Both must be backport as far as 2.2.
bla
2020-11-25 07:47:00 -05:00
check - > state & = ~ CHK_ST_IN_ALLOC ;
2022-05-27 04:04:04 -04:00
tasklet_wakeup ( check - > sc - > wait_event . tasklet ) ;
BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
Historically, the input and output buffers of a check are allocated by hand
during the startup, with a specific size (not necessarily the same than
other buffers). But since the recent refactoring of the checks to rely
exclusively on the tcp-checks and to use the underlying mux layer, this part
is totally buggy. Indeed, because these buffers are now passed to a mux,
they maybe be swapped if a zero-copy is possible. In fact, for now it is
only possible in h2_rcv_buf(). Thus the bug concretely only exists if a h2
health-check is performed. But, it is a latent bug for other muxes.
Another problem is the size of these buffers. because it may differ for the
other buffer size, it might be source of bugs.
Finally, for configurations with hundreds of thousands of servers, having 2
buffers per check always allocated may be an issue.
To fix the bug, we now allocate these buffers when required using the buffer
pool. Thus not-running checks don't waste memory and muxes may swap them if
possible. The only drawback is the check buffers have now always the same
size than buffers used by the streams. This deprecates indirectly the
"tune.chksize" global option.
In addition, the http-check regtest have been update to perform some h2
health-checks.
Many thanks to @VigneshSP94 for its help on this bug.
This patch should solve the issue #936. It relies on the commit "MINOR:
tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main".
Both must be backport as far as 2.2.
bla
2020-11-25 07:47:00 -05:00
return 1 ;
}
MINOR: dynbuf: pass a criticality argument to b_alloc()
The goal is to indicate how critical the allocation is, between the
least one (growing an existing buffer ring) and the topmost one (boot
time allocation for the life of the process).
The 3 tcp-based muxes (h1, h2, fcgi) use a common allocation function
to try to allocate otherwise subscribe. There's currently no distinction
of direction nor part that tries to allocate, and this should be revisited
to improve this situation, particularly when we consider that mux-h2 can
reduce its Tx allocations if needed.
For now, 4 main levels are planned, to translate how the data travels
inside haproxy from a producer to a consumer:
- MUX_RX: buffer used to receive data from the OS
- SE_RX: buffer used to place a transformation of the RX data for
a mux, or to produce a response for an applet
- CHANNEL: the channel buffer for sync recv
- MUX_TX: buffer used to transfer data from the channel to the outside,
generally a mux but there can be a few specificities (e.g.
http client's response buffer passed to the application,
which also gets a transformation of the channel data).
The other levels are a bit different in that they don't strictly need to
allocate for the first two ones, or they're permanent for the last one
(used by compression).
2024-04-16 02:55:20 -04:00
if ( ( check - > state & CHK_ST_OUT_ALLOC ) & & b_alloc ( & check - > bo , DB_CHANNEL ) ) {
2021-04-10 03:00:38 -04:00
TRACE_STATE ( " unblocking check, output buffer allocated " , CHK_EV_TCPCHK_SND | CHK_EV_TX_BLK , check ) ;
BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
Historically, the input and output buffers of a check are allocated by hand
during the startup, with a specific size (not necessarily the same than
other buffers). But since the recent refactoring of the checks to rely
exclusively on the tcp-checks and to use the underlying mux layer, this part
is totally buggy. Indeed, because these buffers are now passed to a mux,
they maybe be swapped if a zero-copy is possible. In fact, for now it is
only possible in h2_rcv_buf(). Thus the bug concretely only exists if a h2
health-check is performed. But, it is a latent bug for other muxes.
Another problem is the size of these buffers. because it may differ for the
other buffer size, it might be source of bugs.
Finally, for configurations with hundreds of thousands of servers, having 2
buffers per check always allocated may be an issue.
To fix the bug, we now allocate these buffers when required using the buffer
pool. Thus not-running checks don't waste memory and muxes may swap them if
possible. The only drawback is the check buffers have now always the same
size than buffers used by the streams. This deprecates indirectly the
"tune.chksize" global option.
In addition, the http-check regtest have been update to perform some h2
health-checks.
Many thanks to @VigneshSP94 for its help on this bug.
This patch should solve the issue #936. It relies on the commit "MINOR:
tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main".
Both must be backport as far as 2.2.
bla
2020-11-25 07:47:00 -05:00
check - > state & = ~ CHK_ST_OUT_ALLOC ;
2022-05-27 04:04:04 -04:00
tasklet_wakeup ( check - > sc - > wait_event . tasklet ) ;
BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
Historically, the input and output buffers of a check are allocated by hand
during the startup, with a specific size (not necessarily the same than
other buffers). But since the recent refactoring of the checks to rely
exclusively on the tcp-checks and to use the underlying mux layer, this part
is totally buggy. Indeed, because these buffers are now passed to a mux,
they maybe be swapped if a zero-copy is possible. In fact, for now it is
only possible in h2_rcv_buf(). Thus the bug concretely only exists if a h2
health-check is performed. But, it is a latent bug for other muxes.
Another problem is the size of these buffers. because it may differ for the
other buffer size, it might be source of bugs.
Finally, for configurations with hundreds of thousands of servers, having 2
buffers per check always allocated may be an issue.
To fix the bug, we now allocate these buffers when required using the buffer
pool. Thus not-running checks don't waste memory and muxes may swap them if
possible. The only drawback is the check buffers have now always the same
size than buffers used by the streams. This deprecates indirectly the
"tune.chksize" global option.
In addition, the http-check regtest have been update to perform some h2
health-checks.
Many thanks to @VigneshSP94 for its help on this bug.
This patch should solve the issue #936. It relies on the commit "MINOR:
tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main".
Both must be backport as far as 2.2.
bla
2020-11-25 07:47:00 -05:00
return 1 ;
}
return 0 ;
}
/*
2021-02-06 14:47:50 -05:00
* Allocate a buffer . If it fails , it adds the check in buffer wait queue .
BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
Historically, the input and output buffers of a check are allocated by hand
during the startup, with a specific size (not necessarily the same than
other buffers). But since the recent refactoring of the checks to rely
exclusively on the tcp-checks and to use the underlying mux layer, this part
is totally buggy. Indeed, because these buffers are now passed to a mux,
they maybe be swapped if a zero-copy is possible. In fact, for now it is
only possible in h2_rcv_buf(). Thus the bug concretely only exists if a h2
health-check is performed. But, it is a latent bug for other muxes.
Another problem is the size of these buffers. because it may differ for the
other buffer size, it might be source of bugs.
Finally, for configurations with hundreds of thousands of servers, having 2
buffers per check always allocated may be an issue.
To fix the bug, we now allocate these buffers when required using the buffer
pool. Thus not-running checks don't waste memory and muxes may swap them if
possible. The only drawback is the check buffers have now always the same
size than buffers used by the streams. This deprecates indirectly the
"tune.chksize" global option.
In addition, the http-check regtest have been update to perform some h2
health-checks.
Many thanks to @VigneshSP94 for its help on this bug.
This patch should solve the issue #936. It relies on the commit "MINOR:
tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main".
Both must be backport as far as 2.2.
bla
2020-11-25 07:47:00 -05:00
*/
struct buffer * check_get_buf ( struct check * check , struct buffer * bptr )
{
struct buffer * buf = NULL ;
2020-04-01 10:27:05 -04:00
2021-04-21 01:32:39 -04:00
if ( likely ( ! LIST_INLIST ( & check - > buf_wait . list ) ) & &
MINOR: dynbuf: pass a criticality argument to b_alloc()
The goal is to indicate how critical the allocation is, between the
least one (growing an existing buffer ring) and the topmost one (boot
time allocation for the life of the process).
The 3 tcp-based muxes (h1, h2, fcgi) use a common allocation function
to try to allocate otherwise subscribe. There's currently no distinction
of direction nor part that tries to allocate, and this should be revisited
to improve this situation, particularly when we consider that mux-h2 can
reduce its Tx allocations if needed.
For now, 4 main levels are planned, to translate how the data travels
inside haproxy from a producer to a consumer:
- MUX_RX: buffer used to receive data from the OS
- SE_RX: buffer used to place a transformation of the RX data for
a mux, or to produce a response for an applet
- CHANNEL: the channel buffer for sync recv
- MUX_TX: buffer used to transfer data from the channel to the outside,
generally a mux but there can be a few specificities (e.g.
http client's response buffer passed to the application,
which also gets a transformation of the channel data).
The other levels are a bit different in that they don't strictly need to
allocate for the first two ones, or they're permanent for the last one
(used by compression).
2024-04-16 02:55:20 -04:00
unlikely ( ( buf = b_alloc ( bptr , DB_CHANNEL ) ) = = NULL ) ) {
2024-04-24 11:02:23 -04:00
b_queue ( DB_CHANNEL , & check - > buf_wait , check , check_buf_available ) ;
BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
Historically, the input and output buffers of a check are allocated by hand
during the startup, with a specific size (not necessarily the same than
other buffers). But since the recent refactoring of the checks to rely
exclusively on the tcp-checks and to use the underlying mux layer, this part
is totally buggy. Indeed, because these buffers are now passed to a mux,
they maybe be swapped if a zero-copy is possible. In fact, for now it is
only possible in h2_rcv_buf(). Thus the bug concretely only exists if a h2
health-check is performed. But, it is a latent bug for other muxes.
Another problem is the size of these buffers. because it may differ for the
other buffer size, it might be source of bugs.
Finally, for configurations with hundreds of thousands of servers, having 2
buffers per check always allocated may be an issue.
To fix the bug, we now allocate these buffers when required using the buffer
pool. Thus not-running checks don't waste memory and muxes may swap them if
possible. The only drawback is the check buffers have now always the same
size than buffers used by the streams. This deprecates indirectly the
"tune.chksize" global option.
In addition, the http-check regtest have been update to perform some h2
health-checks.
Many thanks to @VigneshSP94 for its help on this bug.
This patch should solve the issue #936. It relies on the commit "MINOR:
tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main".
Both must be backport as far as 2.2.
bla
2020-11-25 07:47:00 -05:00
}
return buf ;
}
2020-04-01 10:27:05 -04:00
BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
Historically, the input and output buffers of a check are allocated by hand
during the startup, with a specific size (not necessarily the same than
other buffers). But since the recent refactoring of the checks to rely
exclusively on the tcp-checks and to use the underlying mux layer, this part
is totally buggy. Indeed, because these buffers are now passed to a mux,
they maybe be swapped if a zero-copy is possible. In fact, for now it is
only possible in h2_rcv_buf(). Thus the bug concretely only exists if a h2
health-check is performed. But, it is a latent bug for other muxes.
Another problem is the size of these buffers. because it may differ for the
other buffer size, it might be source of bugs.
Finally, for configurations with hundreds of thousands of servers, having 2
buffers per check always allocated may be an issue.
To fix the bug, we now allocate these buffers when required using the buffer
pool. Thus not-running checks don't waste memory and muxes may swap them if
possible. The only drawback is the check buffers have now always the same
size than buffers used by the streams. This deprecates indirectly the
"tune.chksize" global option.
In addition, the http-check regtest have been update to perform some h2
health-checks.
Many thanks to @VigneshSP94 for its help on this bug.
This patch should solve the issue #936. It relies on the commit "MINOR:
tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main".
Both must be backport as far as 2.2.
bla
2020-11-25 07:47:00 -05:00
/*
* Release a buffer , if any , and try to wake up entities waiting in the buffer
* wait queue .
*/
void check_release_buf ( struct check * check , struct buffer * bptr )
{
if ( bptr - > size ) {
b_free ( bptr ) ;
2021-02-20 06:02:46 -05:00
offer_buffers ( check - > buf_wait . target , 1 ) ;
BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
Historically, the input and output buffers of a check are allocated by hand
during the startup, with a specific size (not necessarily the same than
other buffers). But since the recent refactoring of the checks to rely
exclusively on the tcp-checks and to use the underlying mux layer, this part
is totally buggy. Indeed, because these buffers are now passed to a mux,
they maybe be swapped if a zero-copy is possible. In fact, for now it is
only possible in h2_rcv_buf(). Thus the bug concretely only exists if a h2
health-check is performed. But, it is a latent bug for other muxes.
Another problem is the size of these buffers. because it may differ for the
other buffer size, it might be source of bugs.
Finally, for configurations with hundreds of thousands of servers, having 2
buffers per check always allocated may be an issue.
To fix the bug, we now allocate these buffers when required using the buffer
pool. Thus not-running checks don't waste memory and muxes may swap them if
possible. The only drawback is the check buffers have now always the same
size than buffers used by the streams. This deprecates indirectly the
"tune.chksize" global option.
In addition, the http-check regtest have been update to perform some h2
health-checks.
Many thanks to @VigneshSP94 for its help on this bug.
This patch should solve the issue #936. It relies on the commit "MINOR:
tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main".
Both must be backport as far as 2.2.
bla
2020-11-25 07:47:00 -05:00
}
}
const char * init_check ( struct check * check , int type )
{
check - > type = type ;
2020-04-01 10:27:05 -04:00
BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
Historically, the input and output buffers of a check are allocated by hand
during the startup, with a specific size (not necessarily the same than
other buffers). But since the recent refactoring of the checks to rely
exclusively on the tcp-checks and to use the underlying mux layer, this part
is totally buggy. Indeed, because these buffers are now passed to a mux,
they maybe be swapped if a zero-copy is possible. In fact, for now it is
only possible in h2_rcv_buf(). Thus the bug concretely only exists if a h2
health-check is performed. But, it is a latent bug for other muxes.
Another problem is the size of these buffers. because it may differ for the
other buffer size, it might be source of bugs.
Finally, for configurations with hundreds of thousands of servers, having 2
buffers per check always allocated may be an issue.
To fix the bug, we now allocate these buffers when required using the buffer
pool. Thus not-running checks don't waste memory and muxes may swap them if
possible. The only drawback is the check buffers have now always the same
size than buffers used by the streams. This deprecates indirectly the
"tune.chksize" global option.
In addition, the http-check regtest have been update to perform some h2
health-checks.
Many thanks to @VigneshSP94 for its help on this bug.
This patch should solve the issue #936. It relies on the commit "MINOR:
tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main".
Both must be backport as far as 2.2.
bla
2020-11-25 07:47:00 -05:00
check - > bi = BUF_NULL ;
check - > bo = BUF_NULL ;
2021-02-20 05:49:49 -05:00
LIST_INIT ( & check - > buf_wait . list ) ;
MEDIUM: checks: implement a queue in order to limit concurrent checks
The progressive adoption of OpenSSL 3 and its abysmal handshake
performance has started to reveal situations where it simply isn't
possible anymore to succesfully run health checks on many servers,
because between the moment all the checks are started and the moment
the handshake finally completes, the timeout has expired!
This also has consequences on production traffic which gets
significantly delayed as well, all that for lots of checks. While it's
possible to increase the check delays, it doesn't solve everything as
checks still take a huge amount of time to converge in such conditions.
Here we take a different approach by permitting to enforce the maximum
concurrent checks per thread limitation and implementing an ordered
queue. Thanks to this, if a thread about to start a check has reached
its limit, it will add the check at the end of a queue and it will be
processed once another check is finished. This proves to be extremely
efficient, with all checks completing in a reasonable amount of time
and not being disturbed by the rest of the traffic from other checks.
They're just cycling slower, but at the speed the machine can handle.
One must understand however that if some complex checks perform multiple
exchanges, they will take a check slot for all the required duration.
This is why the limit is not enforced by default.
Tests on SSL show that a limit of 5-50 checks per thread on local
servers gives excellent results already, so that could be a good starting
point.
2023-08-31 10:54:22 -04:00
LIST_INIT ( & check - > check_queue ) ;
2020-04-20 08:54:42 -04:00
return NULL ;
}
2021-07-29 09:51:45 -04:00
/* Liberates the resources allocated for a check.
*
2021-08-10 10:22:51 -04:00
* This function must only be run by the thread owning the check .
2021-07-29 09:51:45 -04:00
*/
2020-04-20 08:54:42 -04:00
void free_check ( struct check * check )
2020-02-21 12:14:59 -05:00
{
2021-08-10 10:22:51 -04:00
/* For agent-check, free the rules / vars from the server. This is not
* done for health - check : the proxy is the owner of the rules / vars
* in this case .
*/
if ( check - > state & CHK_ST_AGENT ) {
free_tcpcheck_vars ( & check - > tcpcheck_rules - > preset_vars ) ;
ha_free ( & check - > tcpcheck_rules ) ;
}
2020-04-20 08:54:42 -04:00
task_destroy ( check - > task ) ;
BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
Historically, the input and output buffers of a check are allocated by hand
during the startup, with a specific size (not necessarily the same than
other buffers). But since the recent refactoring of the checks to rely
exclusively on the tcp-checks and to use the underlying mux layer, this part
is totally buggy. Indeed, because these buffers are now passed to a mux,
they maybe be swapped if a zero-copy is possible. In fact, for now it is
only possible in h2_rcv_buf(). Thus the bug concretely only exists if a h2
health-check is performed. But, it is a latent bug for other muxes.
Another problem is the size of these buffers. because it may differ for the
other buffer size, it might be source of bugs.
Finally, for configurations with hundreds of thousands of servers, having 2
buffers per check always allocated may be an issue.
To fix the bug, we now allocate these buffers when required using the buffer
pool. Thus not-running checks don't waste memory and muxes may swap them if
possible. The only drawback is the check buffers have now always the same
size than buffers used by the streams. This deprecates indirectly the
"tune.chksize" global option.
In addition, the http-check regtest have been update to perform some h2
health-checks.
Many thanks to @VigneshSP94 for its help on this bug.
This patch should solve the issue #936. It relies on the commit "MINOR:
tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main".
Both must be backport as far as 2.2.
bla
2020-11-25 07:47:00 -05:00
check_release_buf ( check , & check - > bi ) ;
check_release_buf ( check , & check - > bo ) ;
2022-05-27 04:04:04 -04:00
if ( check - > sc ) {
sc_destroy ( check - > sc ) ;
check - > sc = NULL ;
2020-04-20 08:54:42 -04:00
}
2020-02-21 12:14:59 -05:00
}
2021-07-29 09:51:45 -04:00
/* This function must be used in order to free a started check. The check will
* be scheduled for a next execution in order to properly close and free all
* check elements .
*
* Non thread - safe .
*/
void check_purge ( struct check * check )
{
2021-08-10 10:21:55 -04:00
check - > state | = CHK_ST_PURGE ;
2021-07-29 09:51:45 -04:00
task_wakeup ( check - > task , TASK_WOKEN_OTHER ) ;
}
2020-04-20 08:54:42 -04:00
/* manages a server health-check. Returns the time the task accepts to wait, or
* TIME_ETERNITY for infinity .
*/
2021-03-02 10:09:26 -05:00
struct task * process_chk ( struct task * t , void * context , unsigned int state )
2020-02-21 12:14:59 -05:00
{
2020-04-20 08:54:42 -04:00
struct check * check = context ;
if ( check - > type = = PR_O2_EXT_CHK )
return process_chk_proc ( t , context , state ) ;
return process_chk_conn ( t , context , state ) ;
2020-02-21 12:14:59 -05:00
}
2020-04-20 08:54:42 -04:00
2021-07-22 10:04:40 -04:00
int start_check_task ( struct check * check , int mininter ,
2020-04-20 08:54:42 -04:00
int nbcheck , int srvpos )
2020-02-21 12:14:59 -05:00
{
2020-04-20 08:54:42 -04:00
struct task * t ;
2020-02-21 12:14:59 -05:00
2021-10-01 12:23:30 -04:00
/* task for the check. Process-based checks exclusively run on thread 1. */
2020-04-20 08:54:42 -04:00
if ( check - > type = = PR_O2_EXT_CHK )
2021-10-20 12:43:30 -04:00
t = task_new_on ( 0 ) ;
2022-04-12 11:47:07 -04:00
else
2021-10-01 12:23:30 -04:00
t = task_new_anywhere ( ) ;
2020-02-21 12:14:59 -05:00
2022-01-06 02:46:56 -05:00
if ( ! t )
goto fail_alloc_task ;
2020-04-20 08:54:42 -04:00
check - > task = t ;
t - > process = process_chk ;
t - > context = check ;
2020-02-21 12:14:59 -05:00
2020-04-20 08:54:42 -04:00
if ( mininter < srv_getinter ( check ) )
mininter = srv_getinter ( check ) ;
2023-05-17 01:39:57 -04:00
if ( global . spread_checks > 0 ) {
int rnd ;
rnd = srv_getinter ( check ) * global . spread_checks / 100 ;
rnd - = ( int ) ( 2 * rnd * ( ha_random32 ( ) / 4294967295.0 ) ) ;
mininter + = rnd ;
}
2020-04-20 08:54:42 -04:00
if ( global . max_spread_checks & & mininter > global . max_spread_checks )
mininter = global . max_spread_checks ;
/* check this every ms */
2023-05-16 13:19:36 -04:00
t - > expire = tick_add ( now_ms , MS_TO_TICKS ( mininter * srvpos / nbcheck ) ) ;
2023-04-28 03:16:15 -04:00
check - > start = now_ns ;
2020-04-20 08:54:42 -04:00
task_queue ( t ) ;
return 1 ;
2022-01-06 02:46:56 -05:00
fail_alloc_task :
ha_alert ( " Starting [%s:%s] check: out of memory. \n " ,
check - > server - > proxy - > id , check - > server - > id ) ;
return 0 ;
2020-02-21 12:14:59 -05:00
}
2020-04-20 08:54:42 -04:00
/*
* Start health - check .
* Returns 0 if OK , ERR_FATAL on error , and prints the error in this case .
*/
static int start_checks ( )
{
struct proxy * px ;
struct server * s ;
int nbcheck = 0 , mininter = 0 , srvpos = 0 ;
/* 0- init the dummy frontend used to create all checks sessions */
init_new_proxy ( & checks_fe ) ;
2021-04-16 04:49:07 -04:00
checks_fe . id = strdup ( " CHECKS-FE " ) ;
2024-12-23 15:59:37 -05:00
if ( ! checks_fe . id ) {
ha_alert ( " Out of memory creating the checks frontend. \n " ) ;
return ERR_ALERT | ERR_FATAL ;
}
2020-04-20 08:54:42 -04:00
checks_fe . cap = PR_CAP_FE | PR_CAP_BE ;
checks_fe . mode = PR_MODE_TCP ;
checks_fe . maxconn = 0 ;
checks_fe . conn_retries = CONN_RETRIES ;
checks_fe . options2 | = PR_O2_INDEPSTR | PR_O2_SMARTCON | PR_O2_SMARTACC ;
checks_fe . timeout . client = TICK_ETERNITY ;
/* 1- count the checkers to run simultaneously.
* We also determine the minimum interval among all of those which
* have an interval larger than SRV_CHK_INTER_THRES . This interval
* will be used to spread their start - up date . Those which have
* a shorter interval will start independently and will not dictate
* too short an interval for all others .
*/
for ( px = proxies_list ; px ; px = px - > next ) {
for ( s = px - > srv ; s ; s = s - > next ) {
if ( s - > check . state & CHK_ST_CONFIGURED ) {
nbcheck + + ;
if ( ( srv_getinter ( & s - > check ) > = SRV_CHK_INTER_THRES ) & &
( ! mininter | | mininter > srv_getinter ( & s - > check ) ) )
mininter = srv_getinter ( & s - > check ) ;
2020-03-31 02:15:58 -04:00
}
2020-04-20 08:54:42 -04:00
if ( s - > agent . state & CHK_ST_CONFIGURED ) {
nbcheck + + ;
if ( ( srv_getinter ( & s - > agent ) > = SRV_CHK_INTER_THRES ) & &
( ! mininter | | mininter > srv_getinter ( & s - > agent ) ) )
mininter = srv_getinter ( & s - > agent ) ;
}
2020-03-31 02:15:58 -04:00
}
2020-04-20 08:54:42 -04:00
}
2020-03-30 09:19:03 -04:00
2020-04-20 08:54:42 -04:00
if ( ! nbcheck )
2020-11-06 09:24:23 -05:00
return ERR_NONE ;
2020-03-30 09:19:03 -04:00
2020-04-20 08:54:42 -04:00
srand ( ( unsigned ) time ( NULL ) ) ;
2020-03-30 09:19:03 -04:00
2021-02-06 14:47:50 -05:00
/* 2- start them as far as possible from each other. For this, we will
* start them after their interval is set to the min interval divided
* by the number of servers , weighted by the server ' s position in the
* list .
2020-04-20 08:54:42 -04:00
*/
for ( px = proxies_list ; px ; px = px - > next ) {
if ( ( px - > options2 & PR_O2_CHK_ANY ) = = PR_O2_EXT_CHK ) {
if ( init_pid_list ( ) ) {
ha_alert ( " Starting [%s] check: out of memory. \n " , px - > id ) ;
return ERR_ALERT | ERR_FATAL ;
}
}
2020-03-30 09:19:03 -04:00
2020-04-20 08:54:42 -04:00
for ( s = px - > srv ; s ; s = s - > next ) {
/* A task for the main check */
if ( s - > check . state & CHK_ST_CONFIGURED ) {
if ( s - > check . type = = PR_O2_EXT_CHK ) {
if ( ! prepare_external_check ( & s - > check ) )
return ERR_ALERT | ERR_FATAL ;
2020-03-30 09:19:03 -04:00
}
2020-04-20 08:54:42 -04:00
if ( ! start_check_task ( & s - > check , mininter , nbcheck , srvpos ) )
return ERR_ALERT | ERR_FATAL ;
srvpos + + ;
2020-03-30 07:16:44 -04:00
}
2020-03-25 13:20:15 -04:00
2020-04-20 08:54:42 -04:00
/* A task for a auxiliary agent check */
if ( s - > agent . state & CHK_ST_CONFIGURED ) {
if ( ! start_check_task ( & s - > agent , mininter , nbcheck , srvpos ) ) {
return ERR_ALERT | ERR_FATAL ;
}
srvpos + + ;
}
2020-03-25 13:20:15 -04:00
}
}
2020-11-06 09:24:23 -05:00
return ERR_NONE ;
2020-04-20 08:54:42 -04:00
}
2020-03-25 13:20:15 -04:00
2020-04-20 08:54:42 -04:00
/*
* Return value :
* the port to be used for the health check
* 0 in case no port could be found for the check
*/
static int srv_check_healthcheck_port ( struct check * chk )
{
int i = 0 ;
struct server * srv = NULL ;
srv = chk - > server ;
2021-02-06 14:47:50 -05:00
/* by default, we use the health check port configured */
2020-04-20 08:54:42 -04:00
if ( chk - > port > 0 )
return chk - > port ;
/* try to get the port from check_core.addr if check.port not set */
i = get_host_port ( & chk - > addr ) ;
if ( i > 0 )
return i ;
/* try to get the port from server address */
/* prevent MAPPORTS from working at this point, since checks could
* not be performed in such case ( MAPPORTS impose a relative ports
* based on live traffic )
*/
if ( srv - > flags & SRV_F_MAPPORTS )
return 0 ;
i = srv - > svc_port ; /* by default */
if ( i > 0 )
return i ;
return 0 ;
2020-03-25 13:20:15 -04:00
}
2020-04-20 08:54:42 -04:00
/* Initializes an health-check attached to the server <srv>. Non-zero is returned
* if an error occurred .
*/
2021-07-22 10:04:40 -04:00
int init_srv_check ( struct server * srv )
2020-03-25 13:20:15 -04:00
{
2020-04-20 08:54:42 -04:00
const char * err ;
struct tcpcheck_rule * r ;
2020-11-06 09:24:23 -05:00
int ret = ERR_NONE ;
2020-11-13 06:34:56 -05:00
int check_type ;
2020-03-25 13:20:15 -04:00
2021-01-12 11:29:45 -05:00
if ( ! srv - > do_check | | ! ( srv - > proxy - > cap & PR_CAP_BE ) )
2020-04-20 08:54:42 -04:00
goto out ;
2020-03-25 13:20:15 -04:00
2020-11-13 06:34:56 -05:00
check_type = srv - > check . tcpcheck_rules - > flags & TCPCHK_RULES_PROTO_CHK ;
2020-03-30 13:52:29 -04:00
2022-03-09 08:20:10 -05:00
if ( ! ( srv - > flags & SRV_F_DYNAMIC ) ) {
/* If neither a port nor an addr was specified and no check
* transport layer is forced , then the transport layer used by
* the checks is the same as for the production traffic .
* Otherwise we use raw_sock by default , unless one is
* specified .
*/
if ( ! srv - > check . port & & ! is_addr ( & srv - > check . addr ) ) {
if ( ! srv - > check . use_ssl & & srv - > use_ssl ! = - 1 ) {
srv - > check . use_ssl = srv - > use_ssl ;
srv - > check . xprt = srv - > xprt ;
}
else if ( srv - > check . use_ssl = = 1 )
srv - > check . xprt = xprt_get ( XPRT_SSL ) ;
srv - > check . send_proxy | = ( srv - > pp_opts ) ;
2020-03-25 13:20:15 -04:00
}
2020-04-20 08:54:42 -04:00
else if ( srv - > check . use_ssl = = 1 )
srv - > check . xprt = xprt_get ( XPRT_SSL ) ;
2020-03-25 13:20:15 -04:00
}
2022-03-09 08:20:10 -05:00
else {
/* For dynamic servers, check-ssl and check-send-proxy must be
2022-07-29 13:26:53 -04:00
* explicitly defined even if the check port was not
2022-03-09 08:20:10 -05:00
* overridden .
*/
if ( srv - > check . use_ssl = = 1 )
srv - > check . xprt = xprt_get ( XPRT_SSL ) ;
}
2020-03-25 13:20:15 -04:00
BUG/MEDIUM: checks: Use the mux protocol specified on the server line
First, when a server health check is initialized, it inherits the mux protocol
from the server if it is not already specified. Because there is no option to
specify the mux protocol for the checks, it is always inherited from the server
for now.
Then, if the connect rule is configured to use the server options, the mux
protocol of the check is used, if defined. Of course, if a mux protocol is
already defined for the connect rule, it is used in priority. But for now, it is
not possible.
Thus, if a server is configured to use, for instance, the h2 protocol, it is
possible to do the same for the health-checks.
No backport needed.
2020-04-23 09:50:18 -04:00
/* Inherit the mux protocol from the server if not already defined for
* the check
*/
2020-11-13 06:34:56 -05:00
if ( srv - > mux_proto & & ! srv - > check . mux_proto & &
( ( srv - > mux_proto - > mode = = PROTO_MODE_HTTP & & check_type = = TCPCHK_RULES_HTTP_CHK ) | |
2024-07-04 03:58:12 -04:00
( srv - > mux_proto - > mode = = PROTO_MODE_SPOP & & check_type = = TCPCHK_RULES_SPOP_CHK ) | |
2020-11-13 06:34:56 -05:00
( srv - > mux_proto - > mode = = PROTO_MODE_TCP & & check_type ! = TCPCHK_RULES_HTTP_CHK ) ) ) {
BUG/MEDIUM: checks: Use the mux protocol specified on the server line
First, when a server health check is initialized, it inherits the mux protocol
from the server if it is not already specified. Because there is no option to
specify the mux protocol for the checks, it is always inherited from the server
for now.
Then, if the connect rule is configured to use the server options, the mux
protocol of the check is used, if defined. Of course, if a mux protocol is
already defined for the connect rule, it is used in priority. But for now, it is
not possible.
Thus, if a server is configured to use, for instance, the h2 protocol, it is
possible to do the same for the health-checks.
No backport needed.
2020-04-23 09:50:18 -04:00
srv - > check . mux_proto = srv - > mux_proto ;
2020-11-13 06:34:56 -05:00
}
2020-11-13 06:34:57 -05:00
/* test that check proto is valid if explicitly defined */
else if ( srv - > check . mux_proto & &
( ( srv - > check . mux_proto - > mode = = PROTO_MODE_HTTP & & check_type ! = TCPCHK_RULES_HTTP_CHK ) | |
2024-07-04 03:58:12 -04:00
( srv - > check . mux_proto - > mode = = PROTO_MODE_SPOP & & check_type ! = TCPCHK_RULES_SPOP_CHK ) | |
2020-11-13 06:34:57 -05:00
( srv - > check . mux_proto - > mode = = PROTO_MODE_TCP & & check_type = = TCPCHK_RULES_HTTP_CHK ) ) ) {
ha_alert ( " config: %s '%s': server '%s' uses an incompatible MUX protocol for the selected check type \n " ,
proxy_type_str ( srv - > proxy ) , srv - > proxy - > id , srv - > id ) ;
ret | = ERR_ALERT | ERR_FATAL ;
goto out ;
}
BUG/MEDIUM: checks: Use the mux protocol specified on the server line
First, when a server health check is initialized, it inherits the mux protocol
from the server if it is not already specified. Because there is no option to
specify the mux protocol for the checks, it is always inherited from the server
for now.
Then, if the connect rule is configured to use the server options, the mux
protocol of the check is used, if defined. Of course, if a mux protocol is
already defined for the connect rule, it is used in priority. But for now, it is
not possible.
Thus, if a server is configured to use, for instance, the h2 protocol, it is
possible to do the same for the health-checks.
No backport needed.
2020-04-23 09:50:18 -04:00
2020-04-20 08:54:42 -04:00
/* validate <srv> server health-check settings */
2020-03-30 13:52:29 -04:00
2020-04-20 08:54:42 -04:00
/* We need at least a service port, a check port or the first tcp-check
* rule must be a ' connect ' one when checking an IPv4 / IPv6 server .
*/
if ( ( srv_check_healthcheck_port ( & srv - > check ) ! = 0 ) | |
( ! is_inet_addr ( & srv - > check . addr ) & & ( is_addr ( & srv - > check . addr ) | | ! is_inet_addr ( & srv - > addr ) ) ) )
goto init ;
2020-03-30 13:52:29 -04:00
2020-04-20 08:54:42 -04:00
if ( ! srv - > proxy - > tcpcheck_rules . list | | LIST_ISEMPTY ( srv - > proxy - > tcpcheck_rules . list ) ) {
ha_alert ( " config: %s '%s': server '%s' has neither service port nor check port. \n " ,
proxy_type_str ( srv - > proxy ) , srv - > proxy - > id , srv - > id ) ;
ret | = ERR_ALERT | ERR_ABORT ;
goto out ;
}
2020-03-25 13:20:15 -04:00
2020-04-20 08:54:42 -04:00
/* search the first action (connect / send / expect) in the list */
r = get_first_tcpcheck_rule ( & srv - > proxy - > tcpcheck_rules ) ;
if ( ! r | | ( r - > action ! = TCPCHK_ACT_CONNECT ) | | ( ! r - > connect . port & & ! get_host_port ( & r - > connect . addr ) ) ) {
ha_alert ( " config: %s '%s': server '%s' has neither service port nor check port "
" nor tcp_check rule 'connect' with port information. \n " ,
proxy_type_str ( srv - > proxy ) , srv - > proxy - > id , srv - > id ) ;
ret | = ERR_ALERT | ERR_ABORT ;
goto out ;
}
2020-03-25 13:20:15 -04:00
2020-04-20 08:54:42 -04:00
/* scan the tcp-check ruleset to ensure a port has been configured */
list_for_each_entry ( r , srv - > proxy - > tcpcheck_rules . list , list ) {
2021-07-22 05:06:41 -04:00
if ( ( r - > action = = TCPCHK_ACT_CONNECT ) & & ( ! r - > connect . port & & ! get_host_port ( & r - > connect . addr ) ) ) {
2020-04-20 08:54:42 -04:00
ha_alert ( " config: %s '%s': server '%s' has neither service port nor check port, "
" and a tcp_check rule 'connect' with no port information. \n " ,
proxy_type_str ( srv - > proxy ) , srv - > proxy - > id , srv - > id ) ;
ret | = ERR_ALERT | ERR_ABORT ;
goto out ;
2020-04-15 05:32:03 -04:00
}
}
2020-04-20 08:54:42 -04:00
init :
err = init_check ( & srv - > check , srv - > proxy - > options2 & PR_O2_CHK_ANY ) ;
if ( err ) {
ha_alert ( " config: %s '%s': unable to init check for server '%s' (%s). \n " ,
proxy_type_str ( srv - > proxy ) , srv - > proxy - > id , srv - > id , err ) ;
ret | = ERR_ALERT | ERR_ABORT ;
goto out ;
2020-04-15 05:32:03 -04:00
}
2023-08-17 10:09:05 -04:00
srv - > check . state | = CHK_ST_CONFIGURED | CHK_ST_ENABLED | CHK_ST_SLEEPING ;
2021-08-25 09:34:53 -04:00
srv_take ( srv ) ;
2021-07-29 09:39:43 -04:00
/* Only increment maxsock for servers from the configuration. Dynamic
* servers at the moment are not taken into account for the estimation
* of the resources limits .
*/
if ( global . mode & MODE_STARTING )
global . maxsock + + ;
2020-04-15 05:32:03 -04:00
2020-04-20 08:54:42 -04:00
out :
return ret ;
2020-04-15 05:32:03 -04:00
}
2020-04-20 08:54:42 -04:00
/* Initializes an agent-check attached to the server <srv>. Non-zero is returned
* if an error occurred .
*/
2021-07-22 10:04:40 -04:00
int init_srv_agent_check ( struct server * srv )
2020-04-15 05:32:03 -04:00
{
2020-04-20 08:54:42 -04:00
struct tcpcheck_rule * chk ;
const char * err ;
2020-11-06 09:24:23 -05:00
int ret = ERR_NONE ;
2020-04-15 05:32:03 -04:00
2021-01-12 11:29:45 -05:00
if ( ! srv - > do_agent | | ! ( srv - > proxy - > cap & PR_CAP_BE ) )
2020-04-20 08:54:42 -04:00
goto out ;
2020-04-15 05:32:03 -04:00
2020-05-05 15:53:22 -04:00
/* If there is no connect rule preceding all send / expect rules, an
2020-04-20 08:54:42 -04:00
* implicit one is inserted before all others .
*/
chk = get_first_tcpcheck_rule ( srv - > agent . tcpcheck_rules ) ;
if ( ! chk | | chk - > action ! = TCPCHK_ACT_CONNECT ) {
chk = calloc ( 1 , sizeof ( * chk ) ) ;
if ( ! chk ) {
2021-06-04 12:22:08 -04:00
ha_alert ( " %s '%s': unable to add implicit tcp-check connect rule "
2020-04-20 08:54:42 -04:00
" to agent-check for server '%s' (out of memory). \n " ,
proxy_type_str ( srv - > proxy ) , srv - > proxy - > id , srv - > id ) ;
ret | = ERR_ALERT | ERR_FATAL ;
goto out ;
2020-04-15 05:32:03 -04:00
}
2020-04-20 08:54:42 -04:00
chk - > action = TCPCHK_ACT_CONNECT ;
chk - > connect . options = ( TCPCHK_OPT_DEFAULT_CONNECT | TCPCHK_OPT_IMPLICIT ) ;
2021-04-21 01:32:39 -04:00
LIST_INSERT ( srv - > agent . tcpcheck_rules - > list , & chk - > list ) ;
2020-04-15 05:32:03 -04:00
}
2022-08-24 05:38:03 -04:00
/* <chk> is always defined here and it is a CONNECT action. If there is
* a preset variable , it means there is an agent string defined and data
* will be sent after the connect .
*/
if ( ! LIST_ISEMPTY ( & srv - > agent . tcpcheck_rules - > preset_vars ) )
chk - > connect . options | = TCPCHK_OPT_HAS_DATA ;
2020-04-15 05:32:03 -04:00
2020-04-20 08:54:42 -04:00
err = init_check ( & srv - > agent , PR_O2_TCPCHK_CHK ) ;
if ( err ) {
ha_alert ( " config: %s '%s': unable to init agent-check for server '%s' (%s). \n " ,
proxy_type_str ( srv - > proxy ) , srv - > proxy - > id , srv - > id , err ) ;
ret | = ERR_ALERT | ERR_ABORT ;
goto out ;
2020-04-15 05:32:03 -04:00
}
2020-04-20 08:54:42 -04:00
if ( ! srv - > agent . inter )
srv - > agent . inter = srv - > check . inter ;
2023-08-17 10:09:05 -04:00
srv - > agent . state | = CHK_ST_CONFIGURED | CHK_ST_ENABLED | CHK_ST_SLEEPING | CHK_ST_AGENT ;
2021-08-25 09:34:53 -04:00
srv_take ( srv ) ;
2021-07-29 09:39:43 -04:00
/* Only increment maxsock for servers from the configuration. Dynamic
* servers at the moment are not taken into account for the estimation
* of the resources limits .
*/
if ( global . mode & MODE_STARTING )
global . maxsock + + ;
2020-04-20 08:54:42 -04:00
out :
return ret ;
2020-04-15 05:32:03 -04:00
}
2020-04-20 08:54:42 -04:00
static void deinit_srv_check ( struct server * srv )
{
2023-03-09 05:56:14 -05:00
if ( srv - > check . state & CHK_ST_CONFIGURED ) {
2020-04-20 08:54:42 -04:00
free_check ( & srv - > check ) ;
2023-03-09 05:56:14 -05:00
/* it is safe to drop now since the main server reference is still held by the proxy */
srv_drop ( srv ) ;
}
2020-04-20 08:54:42 -04:00
srv - > check . state & = ~ CHK_ST_CONFIGURED & ~ CHK_ST_ENABLED ;
srv - > do_check = 0 ;
}
2020-04-15 05:32:03 -04:00
2020-04-20 08:54:42 -04:00
static void deinit_srv_agent_check ( struct server * srv )
{
2023-03-09 05:56:14 -05:00
if ( srv - > agent . state & CHK_ST_CONFIGURED ) {
2020-04-20 08:54:42 -04:00
free_check ( & srv - > agent ) ;
2023-03-09 05:56:14 -05:00
/* it is safe to drop now since the main server reference is still held by the proxy */
srv_drop ( srv ) ;
}
2020-04-20 08:54:42 -04:00
srv - > agent . state & = ~ CHK_ST_CONFIGURED & ~ CHK_ST_ENABLED & ~ CHK_ST_AGENT ;
srv - > do_agent = 0 ;
2020-04-15 05:32:03 -04:00
}
2020-06-05 05:40:38 -04:00
REGISTER_POST_SERVER_CHECK ( init_srv_check ) ;
REGISTER_POST_SERVER_CHECK ( init_srv_agent_check ) ;
REGISTER_POST_CHECK ( start_checks ) ;
2020-04-20 08:54:42 -04:00
2020-06-05 05:40:38 -04:00
REGISTER_SERVER_DEINIT ( deinit_srv_check ) ;
REGISTER_SERVER_DEINIT ( deinit_srv_agent_check ) ;
2020-04-20 08:54:42 -04:00
2023-11-21 13:54:16 -05:00
/* perform minimal initializations */
MEDIUM: checks: implement a queue in order to limit concurrent checks
The progressive adoption of OpenSSL 3 and its abysmal handshake
performance has started to reveal situations where it simply isn't
possible anymore to succesfully run health checks on many servers,
because between the moment all the checks are started and the moment
the handshake finally completes, the timeout has expired!
This also has consequences on production traffic which gets
significantly delayed as well, all that for lots of checks. While it's
possible to increase the check delays, it doesn't solve everything as
checks still take a huge amount of time to converge in such conditions.
Here we take a different approach by permitting to enforce the maximum
concurrent checks per thread limitation and implementing an ordered
queue. Thanks to this, if a thread about to start a check has reached
its limit, it will add the check at the end of a queue and it will be
processed once another check is finished. This proves to be extremely
efficient, with all checks completing in a reasonable amount of time
and not being disturbed by the rest of the traffic from other checks.
They're just cycling slower, but at the speed the machine can handle.
One must understand however that if some complex checks perform multiple
exchanges, they will take a check slot for all the required duration.
This is why the limit is not enforced by default.
Tests on SSL show that a limit of 5-50 checks per thread on local
servers gives excellent results already, so that could be a good starting
point.
2023-08-31 10:54:22 -04:00
static void init_checks ( )
{
int i ;
for ( i = 0 ; i < MAX_THREADS ; i + + )
LIST_INIT ( & ha_thread_ctx [ i ] . queued_checks ) ;
}
INITCALL0 ( STG_PREPARE , init_checks ) ;
2020-04-20 08:54:42 -04:00
/**************************************************************************/
/************************** Check sample fetches **************************/
/**************************************************************************/
2020-03-25 13:20:15 -04:00
2020-04-20 08:54:42 -04:00
static struct sample_fetch_kw_list smp_kws = { ILH , {
{ /* END */ } ,
} } ;
INITCALL1 ( STG_REGISTER , sample_register_fetches , & smp_kws ) ;
/**************************************************************************/
/************************ Check's parsing functions ***********************/
/**************************************************************************/
MINOR: server/checks: Move parsing of server check keywords in checks.c
Parsing of following keywords have been moved in checks.c file : addr, check,
check-send-proxy, check-via-socks4, no-check, no-check-send-proxy, rise, fall,
inter, fastinter, downinter and port.
2020-04-06 09:04:11 -04:00
/* Parse the "addr" server keyword */
static int srv_parse_addr ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
struct sockaddr_storage * sk ;
int port1 , port2 , err_code = 0 ;
if ( ! * args [ * cur_arg + 1 ] ) {
memprintf ( errmsg , " '%s' expects <ipv4|ipv6> as argument. " , args [ * cur_arg ] ) ;
goto error ;
}
2024-08-26 05:50:24 -04:00
sk = str2sa_range ( args [ * cur_arg + 1 ] , NULL , & port1 , & port2 , NULL , NULL , NULL , errmsg , NULL , NULL , NULL ,
2020-09-16 13:17:08 -04:00
PA_O_RESOLVE | PA_O_PORT_OK | PA_O_STREAM | PA_O_CONNECT ) ;
MINOR: server/checks: Move parsing of server check keywords in checks.c
Parsing of following keywords have been moved in checks.c file : addr, check,
check-send-proxy, check-via-socks4, no-check, no-check-send-proxy, rise, fall,
inter, fastinter, downinter and port.
2020-04-06 09:04:11 -04:00
if ( ! sk ) {
memprintf ( errmsg , " '%s' : %s " , args [ * cur_arg ] , * errmsg ) ;
goto error ;
}
2021-02-03 16:30:08 -05:00
srv - > check . addr = * sk ;
/* if agentaddr was never set, we can use addr */
if ( ! ( srv - > flags & SRV_F_AGENTADDR ) )
srv - > agent . addr = * sk ;
MINOR: server/checks: Move parsing of server check keywords in checks.c
Parsing of following keywords have been moved in checks.c file : addr, check,
check-send-proxy, check-via-socks4, no-check, no-check-send-proxy, rise, fall,
inter, fastinter, downinter and port.
2020-04-06 09:04:11 -04:00
out :
return err_code ;
error :
err_code | = ERR_ALERT | ERR_FATAL ;
goto out ;
}
2020-04-06 08:26:30 -04:00
/* Parse the "agent-addr" server keyword */
static int srv_parse_agent_addr ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
2021-02-03 16:30:08 -05:00
struct sockaddr_storage sk ;
2020-04-06 08:26:30 -04:00
int err_code = 0 ;
if ( ! * ( args [ * cur_arg + 1 ] ) ) {
memprintf ( errmsg , " '%s' expects an address as argument. " , args [ * cur_arg ] ) ;
goto error ;
}
2021-02-03 16:30:08 -05:00
memset ( & sk , 0 , sizeof ( sk ) ) ;
if ( str2ip ( args [ * cur_arg + 1 ] , & sk ) = = NULL ) {
2020-04-06 08:26:30 -04:00
memprintf ( errmsg , " parsing agent-addr failed. Check if '%s' is correct address. " , args [ * cur_arg + 1 ] ) ;
goto error ;
}
2021-02-03 16:30:08 -05:00
set_srv_agent_addr ( srv , & sk ) ;
2020-04-06 08:26:30 -04:00
out :
return err_code ;
error :
err_code | = ERR_ALERT | ERR_FATAL ;
goto out ;
}
/* Parse the "agent-check" server keyword */
static int srv_parse_agent_check ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
2020-04-06 11:54:24 -04:00
struct tcpcheck_ruleset * rs = NULL ;
struct tcpcheck_rules * rules = srv - > agent . tcpcheck_rules ;
struct tcpcheck_rule * chk ;
int err_code = 0 ;
if ( srv - > do_agent )
goto out ;
2021-01-12 11:29:45 -05:00
if ( ! ( curpx - > cap & PR_CAP_BE ) ) {
memprintf ( errmsg , " '%s' ignored because %s '%s' has no backend capability " ,
args [ * cur_arg ] , proxy_type_str ( curpx ) , curpx - > id ) ;
return ERR_WARN ;
}
2020-04-06 11:54:24 -04:00
if ( ! rules ) {
rules = calloc ( 1 , sizeof ( * rules ) ) ;
if ( ! rules ) {
memprintf ( errmsg , " out of memory. " ) ;
goto error ;
}
LIST_INIT ( & rules - > preset_vars ) ;
srv - > agent . tcpcheck_rules = rules ;
}
rules - > list = NULL ;
rules - > flags = 0 ;
2020-04-20 08:54:42 -04:00
rs = find_tcpcheck_ruleset ( " *agent-check " ) ;
2020-04-06 11:54:24 -04:00
if ( rs )
goto ruleset_found ;
2020-04-20 08:54:42 -04:00
rs = create_tcpcheck_ruleset ( " *agent-check " ) ;
2020-04-06 11:54:24 -04:00
if ( rs = = NULL ) {
memprintf ( errmsg , " out of memory. " ) ;
goto error ;
}
2020-05-05 12:43:43 -04:00
chk = parse_tcpcheck_send ( ( char * [ ] ) { " tcp-check " , " send-lf " , " %[var(check.agent_string)] " , " " } ,
2020-04-06 11:54:24 -04:00
1 , curpx , & rs - > rules , srv - > conf . file , srv - > conf . line , errmsg ) ;
if ( ! chk ) {
memprintf ( errmsg , " '%s': %s " , args [ * cur_arg ] , * errmsg ) ;
goto error ;
}
chk - > index = 0 ;
2021-04-21 01:32:39 -04:00
LIST_APPEND ( & rs - > rules , & chk - > list ) ;
2020-04-06 11:54:24 -04:00
chk = parse_tcpcheck_expect ( ( char * [ ] ) { " tcp-check " , " expect " , " custom " , " " } ,
2020-04-15 05:32:03 -04:00
1 , curpx , & rs - > rules , TCPCHK_RULES_AGENT_CHK ,
srv - > conf . file , srv - > conf . line , errmsg ) ;
2020-04-06 11:54:24 -04:00
if ( ! chk ) {
memprintf ( errmsg , " '%s': %s " , args [ * cur_arg ] , * errmsg ) ;
goto error ;
}
chk - > expect . custom = tcpcheck_agent_expect_reply ;
chk - > index = 1 ;
2021-04-21 01:32:39 -04:00
LIST_APPEND ( & rs - > rules , & chk - > list ) ;
2020-04-06 11:54:24 -04:00
ruleset_found :
rules - > list = & rs - > rules ;
2020-11-25 10:43:12 -05:00
rules - > flags & = ~ ( TCPCHK_RULES_PROTO_CHK | TCPCHK_RULES_UNUSED_RS ) ;
2020-04-09 17:13:54 -04:00
rules - > flags | = TCPCHK_RULES_AGENT_CHK ;
2020-04-06 08:26:30 -04:00
srv - > do_agent = 1 ;
2020-04-06 11:54:24 -04:00
out :
2021-06-18 15:57:49 -04:00
return err_code ;
2020-04-06 11:54:24 -04:00
error :
deinit_srv_agent_check ( srv ) ;
2020-04-20 08:54:42 -04:00
free_tcpcheck_ruleset ( rs ) ;
2020-04-06 11:54:24 -04:00
err_code | = ERR_ALERT | ERR_FATAL ;
goto out ;
2020-04-06 08:26:30 -04:00
}
/* Parse the "agent-inter" server keyword */
static int srv_parse_agent_inter ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
const char * err = NULL ;
unsigned int delay ;
int err_code = 0 ;
if ( ! * ( args [ * cur_arg + 1 ] ) ) {
memprintf ( errmsg , " '%s' expects a delay as argument. " , args [ * cur_arg ] ) ;
goto error ;
}
err = parse_time_err ( args [ * cur_arg + 1 ] , & delay , TIME_UNIT_MS ) ;
if ( err = = PARSE_TIME_OVER ) {
memprintf ( errmsg , " timer overflow in argument <%s> to <%s> of server %s, maximum value is 2147483647 ms (~24.8 days). " ,
args [ * cur_arg + 1 ] , args [ * cur_arg ] , srv - > id ) ;
goto error ;
}
else if ( err = = PARSE_TIME_UNDER ) {
memprintf ( errmsg , " timer underflow in argument <%s> to <%s> of server %s, minimum non-null value is 1 ms. " ,
args [ * cur_arg + 1 ] , args [ * cur_arg ] , srv - > id ) ;
goto error ;
}
else if ( err ) {
memprintf ( errmsg , " unexpected character '%c' in 'agent-inter' argument of server %s. " ,
* err , srv - > id ) ;
goto error ;
}
if ( delay < = 0 ) {
memprintf ( errmsg , " invalid value %d for argument '%s' of server %s. " ,
delay , args [ * cur_arg ] , srv - > id ) ;
goto error ;
}
srv - > agent . inter = delay ;
2024-11-18 13:47:59 -05:00
if ( warn_if_lower ( args [ * cur_arg + 1 ] , 100 ) ) {
memprintf ( errmsg , " '%s %u' in server '%s' is suspiciously small for a value in milliseconds. Please use an explicit unit ('%ums') if that was the intent " ,
args [ * cur_arg ] , delay , srv - > id , delay ) ;
err_code | = ERR_WARN ;
}
2020-04-06 08:26:30 -04:00
out :
return err_code ;
error :
err_code | = ERR_ALERT | ERR_FATAL ;
goto out ;
}
/* Parse the "agent-port" server keyword */
static int srv_parse_agent_port ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
int err_code = 0 ;
if ( ! * ( args [ * cur_arg + 1 ] ) ) {
memprintf ( errmsg , " '%s' expects a port number as argument. " , args [ * cur_arg ] ) ;
goto error ;
}
2021-07-29 09:39:43 -04:00
/* Only increment maxsock for servers from the configuration. Dynamic
* servers at the moment are not taken into account for the estimation
* of the resources limits .
*/
if ( global . mode & MODE_STARTING )
global . maxsock + + ;
2021-02-03 16:30:09 -05:00
set_srv_agent_port ( srv , atol ( args [ * cur_arg + 1 ] ) ) ;
2020-04-06 08:26:30 -04:00
out :
return err_code ;
error :
err_code | = ERR_ALERT | ERR_FATAL ;
goto out ;
}
2020-04-06 11:54:24 -04:00
int set_srv_agent_send ( struct server * srv , const char * send )
{
struct tcpcheck_rules * rules = srv - > agent . tcpcheck_rules ;
struct tcpcheck_var * var = NULL ;
char * str ;
str = strdup ( send ) ;
2020-04-21 04:57:42 -04:00
var = create_tcpcheck_var ( ist ( " check.agent_string " ) ) ;
2020-04-06 11:54:24 -04:00
if ( str = = NULL | | var = = NULL )
goto error ;
free_tcpcheck_vars ( & rules - > preset_vars ) ;
var - > data . type = SMP_T_STR ;
var - > data . u . str . area = str ;
var - > data . u . str . data = strlen ( str ) ;
LIST_INIT ( & var - > list ) ;
2021-04-21 01:32:39 -04:00
LIST_APPEND ( & rules - > preset_vars , & var - > list ) ;
2020-04-06 11:54:24 -04:00
return 1 ;
error :
free ( str ) ;
free ( var ) ;
return 0 ;
}
2020-04-06 08:26:30 -04:00
/* Parse the "agent-send" server keyword */
static int srv_parse_agent_send ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
2020-04-06 11:54:24 -04:00
struct tcpcheck_rules * rules = srv - > agent . tcpcheck_rules ;
2020-04-06 08:26:30 -04:00
int err_code = 0 ;
if ( ! * ( args [ * cur_arg + 1 ] ) ) {
memprintf ( errmsg , " '%s' expects a string as argument. " , args [ * cur_arg ] ) ;
goto error ;
}
2020-04-06 11:54:24 -04:00
if ( ! rules ) {
rules = calloc ( 1 , sizeof ( * rules ) ) ;
if ( ! rules ) {
memprintf ( errmsg , " out of memory. " ) ;
goto error ;
}
LIST_INIT ( & rules - > preset_vars ) ;
srv - > agent . tcpcheck_rules = rules ;
}
if ( ! set_srv_agent_send ( srv , args [ * cur_arg + 1 ] ) ) {
2020-04-06 08:26:30 -04:00
memprintf ( errmsg , " out of memory. " ) ;
goto error ;
}
out :
return err_code ;
error :
2020-04-06 11:54:24 -04:00
deinit_srv_agent_check ( srv ) ;
2020-04-06 08:26:30 -04:00
err_code | = ERR_ALERT | ERR_FATAL ;
goto out ;
}
/* Parse the "no-agent-send" server keyword */
static int srv_parse_no_agent_check ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
2020-04-06 11:54:24 -04:00
deinit_srv_agent_check ( srv ) ;
2020-04-06 08:26:30 -04:00
return 0 ;
}
MINOR: server/checks: Move parsing of server check keywords in checks.c
Parsing of following keywords have been moved in checks.c file : addr, check,
check-send-proxy, check-via-socks4, no-check, no-check-send-proxy, rise, fall,
inter, fastinter, downinter and port.
2020-04-06 09:04:11 -04:00
/* Parse the "check" server keyword */
static int srv_parse_check ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
2021-01-12 11:29:45 -05:00
if ( ! ( curpx - > cap & PR_CAP_BE ) ) {
memprintf ( errmsg , " '%s' ignored because %s '%s' has no backend capability " ,
args [ * cur_arg ] , proxy_type_str ( curpx ) , curpx - > id ) ;
return ERR_WARN ;
}
MINOR: server/checks: Move parsing of server check keywords in checks.c
Parsing of following keywords have been moved in checks.c file : addr, check,
check-send-proxy, check-via-socks4, no-check, no-check-send-proxy, rise, fall,
inter, fastinter, downinter and port.
2020-04-06 09:04:11 -04:00
srv - > do_check = 1 ;
return 0 ;
}
/* Parse the "check-send-proxy" server keyword */
static int srv_parse_check_send_proxy ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
srv - > check . send_proxy = 1 ;
return 0 ;
}
/* Parse the "check-via-socks4" server keyword */
static int srv_parse_check_via_socks4 ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
srv - > check . via_socks4 = 1 ;
return 0 ;
}
/* Parse the "no-check" server keyword */
static int srv_parse_no_check ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
deinit_srv_check ( srv ) ;
return 0 ;
}
2025-03-27 10:09:52 -04:00
/* Parse the "no-check-reuse-pool" server keyword */
static int srv_parse_no_check_reuse_pool ( char * * args , int * cur_arg ,
struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
srv - > check . reuse_pool = 0 ;
return 0 ;
}
MINOR: server/checks: Move parsing of server check keywords in checks.c
Parsing of following keywords have been moved in checks.c file : addr, check,
check-send-proxy, check-via-socks4, no-check, no-check-send-proxy, rise, fall,
inter, fastinter, downinter and port.
2020-04-06 09:04:11 -04:00
/* Parse the "no-check-send-proxy" server keyword */
static int srv_parse_no_check_send_proxy ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
srv - > check . send_proxy = 0 ;
return 0 ;
}
2020-04-23 10:27:59 -04:00
/* parse the "check-proto" server keyword */
static int srv_parse_check_proto ( char * * args , int * cur_arg ,
struct proxy * px , struct server * newsrv , char * * err )
{
int err_code = 0 ;
if ( ! * args [ * cur_arg + 1 ] ) {
memprintf ( err , " '%s' : missing value " , args [ * cur_arg ] ) ;
goto error ;
}
2021-03-04 11:31:47 -05:00
newsrv - > check . mux_proto = get_mux_proto ( ist ( args [ * cur_arg + 1 ] ) ) ;
2020-04-23 10:27:59 -04:00
if ( ! newsrv - > check . mux_proto ) {
memprintf ( err , " '%s' : unknown MUX protocol '%s' " , args [ * cur_arg ] , args [ * cur_arg + 1 ] ) ;
goto error ;
}
out :
return err_code ;
error :
err_code | = ERR_ALERT | ERR_FATAL ;
goto out ;
}
2025-03-27 10:09:52 -04:00
/* Parse the "check-reuse-pool" server keyword */
static int srv_parse_check_reuse_pool ( char * * args , int * cur_arg ,
struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
srv - > check . reuse_pool = 1 ;
return 0 ;
}
2020-04-23 10:27:59 -04:00
MINOR: server/checks: Move parsing of server check keywords in checks.c
Parsing of following keywords have been moved in checks.c file : addr, check,
check-send-proxy, check-via-socks4, no-check, no-check-send-proxy, rise, fall,
inter, fastinter, downinter and port.
2020-04-06 09:04:11 -04:00
/* Parse the "rise" server keyword */
static int srv_parse_check_rise ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
int err_code = 0 ;
if ( ! * args [ * cur_arg + 1 ] ) {
memprintf ( errmsg , " '%s' expects an integer argument. " , args [ * cur_arg ] ) ;
goto error ;
}
srv - > check . rise = atol ( args [ * cur_arg + 1 ] ) ;
if ( srv - > check . rise < = 0 ) {
memprintf ( errmsg , " '%s' has to be > 0. " , args [ * cur_arg ] ) ;
goto error ;
}
if ( srv - > check . health )
srv - > check . health = srv - > check . rise ;
out :
return err_code ;
error :
deinit_srv_agent_check ( srv ) ;
err_code | = ERR_ALERT | ERR_FATAL ;
goto out ;
}
/* Parse the "fall" server keyword */
static int srv_parse_check_fall ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
int err_code = 0 ;
if ( ! * args [ * cur_arg + 1 ] ) {
memprintf ( errmsg , " '%s' expects an integer argument. " , args [ * cur_arg ] ) ;
goto error ;
}
srv - > check . fall = atol ( args [ * cur_arg + 1 ] ) ;
if ( srv - > check . fall < = 0 ) {
memprintf ( errmsg , " '%s' has to be > 0. " , args [ * cur_arg ] ) ;
goto error ;
}
out :
return err_code ;
error :
deinit_srv_agent_check ( srv ) ;
err_code | = ERR_ALERT | ERR_FATAL ;
goto out ;
}
/* Parse the "inter" server keyword */
static int srv_parse_check_inter ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
const char * err = NULL ;
unsigned int delay ;
int err_code = 0 ;
if ( ! * ( args [ * cur_arg + 1 ] ) ) {
memprintf ( errmsg , " '%s' expects a delay as argument. " , args [ * cur_arg ] ) ;
goto error ;
}
err = parse_time_err ( args [ * cur_arg + 1 ] , & delay , TIME_UNIT_MS ) ;
if ( err = = PARSE_TIME_OVER ) {
memprintf ( errmsg , " timer overflow in argument <%s> to <%s> of server %s, maximum value is 2147483647 ms (~24.8 days). " ,
args [ * cur_arg + 1 ] , args [ * cur_arg ] , srv - > id ) ;
goto error ;
}
else if ( err = = PARSE_TIME_UNDER ) {
memprintf ( errmsg , " timer underflow in argument <%s> to <%s> of server %s, minimum non-null value is 1 ms. " ,
args [ * cur_arg + 1 ] , args [ * cur_arg ] , srv - > id ) ;
goto error ;
}
else if ( err ) {
memprintf ( errmsg , " unexpected character '%c' in 'agent-inter' argument of server %s. " ,
* err , srv - > id ) ;
goto error ;
}
if ( delay < = 0 ) {
memprintf ( errmsg , " invalid value %d for argument '%s' of server %s. " ,
delay , args [ * cur_arg ] , srv - > id ) ;
goto error ;
}
srv - > check . inter = delay ;
2024-11-18 13:47:59 -05:00
if ( warn_if_lower ( args [ * cur_arg + 1 ] , 100 ) ) {
memprintf ( errmsg , " '%s %u' in server '%s' is suspiciously small for a value in milliseconds. Please use an explicit unit ('%ums') if that was the intent " ,
args [ * cur_arg ] , delay , srv - > id , delay ) ;
err_code | = ERR_WARN ;
}
MINOR: server/checks: Move parsing of server check keywords in checks.c
Parsing of following keywords have been moved in checks.c file : addr, check,
check-send-proxy, check-via-socks4, no-check, no-check-send-proxy, rise, fall,
inter, fastinter, downinter and port.
2020-04-06 09:04:11 -04:00
out :
return err_code ;
error :
err_code | = ERR_ALERT | ERR_FATAL ;
goto out ;
}
/* Parse the "fastinter" server keyword */
static int srv_parse_check_fastinter ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
const char * err = NULL ;
unsigned int delay ;
int err_code = 0 ;
if ( ! * ( args [ * cur_arg + 1 ] ) ) {
memprintf ( errmsg , " '%s' expects a delay as argument. " , args [ * cur_arg ] ) ;
goto error ;
}
err = parse_time_err ( args [ * cur_arg + 1 ] , & delay , TIME_UNIT_MS ) ;
if ( err = = PARSE_TIME_OVER ) {
memprintf ( errmsg , " timer overflow in argument <%s> to <%s> of server %s, maximum value is 2147483647 ms (~24.8 days). " ,
args [ * cur_arg + 1 ] , args [ * cur_arg ] , srv - > id ) ;
goto error ;
}
else if ( err = = PARSE_TIME_UNDER ) {
memprintf ( errmsg , " timer underflow in argument <%s> to <%s> of server %s, minimum non-null value is 1 ms. " ,
args [ * cur_arg + 1 ] , args [ * cur_arg ] , srv - > id ) ;
goto error ;
}
else if ( err ) {
memprintf ( errmsg , " unexpected character '%c' in 'agent-inter' argument of server %s. " ,
* err , srv - > id ) ;
goto error ;
}
if ( delay < = 0 ) {
memprintf ( errmsg , " invalid value %d for argument '%s' of server %s. " ,
delay , args [ * cur_arg ] , srv - > id ) ;
goto error ;
}
srv - > check . fastinter = delay ;
2024-11-18 13:47:59 -05:00
if ( warn_if_lower ( args [ * cur_arg + 1 ] , 100 ) ) {
memprintf ( errmsg , " '%s %u' in server '%s' is suspiciously small for a value in milliseconds. Please use an explicit unit ('%ums') if that was the intent " ,
args [ * cur_arg ] , delay , srv - > id , delay ) ;
err_code | = ERR_WARN ;
}
MINOR: server/checks: Move parsing of server check keywords in checks.c
Parsing of following keywords have been moved in checks.c file : addr, check,
check-send-proxy, check-via-socks4, no-check, no-check-send-proxy, rise, fall,
inter, fastinter, downinter and port.
2020-04-06 09:04:11 -04:00
out :
return err_code ;
error :
err_code | = ERR_ALERT | ERR_FATAL ;
goto out ;
}
/* Parse the "downinter" server keyword */
static int srv_parse_check_downinter ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
const char * err = NULL ;
unsigned int delay ;
int err_code = 0 ;
if ( ! * ( args [ * cur_arg + 1 ] ) ) {
memprintf ( errmsg , " '%s' expects a delay as argument. " , args [ * cur_arg ] ) ;
goto error ;
}
err = parse_time_err ( args [ * cur_arg + 1 ] , & delay , TIME_UNIT_MS ) ;
if ( err = = PARSE_TIME_OVER ) {
memprintf ( errmsg , " timer overflow in argument <%s> to <%s> of server %s, maximum value is 2147483647 ms (~24.8 days). " ,
args [ * cur_arg + 1 ] , args [ * cur_arg ] , srv - > id ) ;
goto error ;
}
else if ( err = = PARSE_TIME_UNDER ) {
memprintf ( errmsg , " timer underflow in argument <%s> to <%s> of server %s, minimum non-null value is 1 ms. " ,
args [ * cur_arg + 1 ] , args [ * cur_arg ] , srv - > id ) ;
goto error ;
}
else if ( err ) {
memprintf ( errmsg , " unexpected character '%c' in 'agent-inter' argument of server %s. " ,
* err , srv - > id ) ;
goto error ;
}
if ( delay < = 0 ) {
memprintf ( errmsg , " invalid value %d for argument '%s' of server %s. " ,
delay , args [ * cur_arg ] , srv - > id ) ;
goto error ;
}
srv - > check . downinter = delay ;
2024-11-18 13:47:59 -05:00
if ( warn_if_lower ( args [ * cur_arg + 1 ] , 100 ) ) {
memprintf ( errmsg , " '%s %u' in server '%s' is suspiciously small for a value in milliseconds. Please use an explicit unit ('%ums') if that was the intent " ,
args [ * cur_arg ] , delay , srv - > id , delay ) ;
err_code | = ERR_WARN ;
}
MINOR: server/checks: Move parsing of server check keywords in checks.c
Parsing of following keywords have been moved in checks.c file : addr, check,
check-send-proxy, check-via-socks4, no-check, no-check-send-proxy, rise, fall,
inter, fastinter, downinter and port.
2020-04-06 09:04:11 -04:00
out :
return err_code ;
error :
err_code | = ERR_ALERT | ERR_FATAL ;
goto out ;
}
/* Parse the "port" server keyword */
static int srv_parse_check_port ( char * * args , int * cur_arg , struct proxy * curpx , struct server * srv ,
char * * errmsg )
{
int err_code = 0 ;
if ( ! * ( args [ * cur_arg + 1 ] ) ) {
memprintf ( errmsg , " '%s' expects a port number as argument. " , args [ * cur_arg ] ) ;
goto error ;
}
2021-07-29 09:39:43 -04:00
/* Only increment maxsock for servers from the configuration. Dynamic
* servers at the moment are not taken into account for the estimation
* of the resources limits .
*/
if ( global . mode & MODE_STARTING )
global . maxsock + + ;
MINOR: server/checks: Move parsing of server check keywords in checks.c
Parsing of following keywords have been moved in checks.c file : addr, check,
check-send-proxy, check-via-socks4, no-check, no-check-send-proxy, rise, fall,
inter, fastinter, downinter and port.
2020-04-06 09:04:11 -04:00
srv - > check . port = atol ( args [ * cur_arg + 1 ] ) ;
2021-02-03 16:30:09 -05:00
/* if agentport was never set, we can use port */
if ( ! ( srv - > flags & SRV_F_AGENTPORT ) )
srv - > agent . port = srv - > check . port ;
MINOR: server/checks: Move parsing of server check keywords in checks.c
Parsing of following keywords have been moved in checks.c file : addr, check,
check-send-proxy, check-via-socks4, no-check, no-check-send-proxy, rise, fall,
inter, fastinter, downinter and port.
2020-04-06 09:04:11 -04:00
out :
return err_code ;
error :
err_code | = ERR_ALERT | ERR_FATAL ;
goto out ;
}
2023-08-23 05:39:00 -04:00
/* config parser for global "tune.max-checks-per-thread" */
static int check_parse_global_max_checks ( char * * args , int section_type , struct proxy * curpx ,
const struct proxy * defpx , const char * file , int line ,
char * * err )
{
if ( too_many_args ( 1 , args , err , NULL ) )
return - 1 ;
global . tune . max_checks_per_thread = atoi ( args [ 1 ] ) ;
return 0 ;
}
/* register "global" section keywords */
static struct cfg_kw_list chk_cfg_kws = { ILH , {
{ CFG_GLOBAL , " tune.max-checks-per-thread " , check_parse_global_max_checks } ,
{ 0 , NULL , NULL }
} } ;
INITCALL1 ( STG_REGISTER , cfg_register_keywords , & chk_cfg_kws ) ;
/* register "server" line keywords */
2020-04-06 08:26:30 -04:00
static struct srv_kw_list srv_kws = { " CHK " , { } , {
2021-07-23 10:34:58 -04:00
{ " addr " , srv_parse_addr , 1 , 1 , 1 } , /* IP address to send health to or to probe from agent-check */
{ " agent-addr " , srv_parse_agent_addr , 1 , 1 , 1 } , /* Enable an auxiliary agent check */
2021-08-04 05:33:14 -04:00
{ " agent-check " , srv_parse_agent_check , 0 , 1 , 1 } , /* Enable agent checks */
2021-07-23 10:34:58 -04:00
{ " agent-inter " , srv_parse_agent_inter , 1 , 1 , 1 } , /* Set the interval between two agent checks */
{ " agent-port " , srv_parse_agent_port , 1 , 1 , 1 } , /* Set the TCP port used for agent checks. */
{ " agent-send " , srv_parse_agent_send , 1 , 1 , 1 } , /* Set string to send to agent. */
2021-07-22 10:04:59 -04:00
{ " check " , srv_parse_check , 0 , 1 , 1 } , /* Enable health checks */
2021-07-23 10:34:58 -04:00
{ " check-proto " , srv_parse_check_proto , 1 , 1 , 1 } , /* Set the mux protocol for health checks */
2025-03-27 10:09:52 -04:00
{ " check-reuse-pool " , srv_parse_check_reuse_pool , 0 , 1 , 1 } , /* Allows to reuse idle connections for checks */
2021-07-23 10:34:58 -04:00
{ " check-send-proxy " , srv_parse_check_send_proxy , 0 , 1 , 1 } , /* Enable PROXY protocol for health checks */
{ " check-via-socks4 " , srv_parse_check_via_socks4 , 0 , 1 , 1 } , /* Enable socks4 proxy for health checks */
2021-03-08 11:08:01 -05:00
{ " no-agent-check " , srv_parse_no_agent_check , 0 , 1 , 0 } , /* Do not enable any auxiliary agent check */
{ " no-check " , srv_parse_no_check , 0 , 1 , 0 } , /* Disable health checks */
2025-03-27 10:09:52 -04:00
{ " no-check-reuse-pool " , srv_parse_no_check_reuse_pool , 0 , 1 , 0 } , /* Disable PROXY protocol for health checks */
2021-03-08 11:08:01 -05:00
{ " no-check-send-proxy " , srv_parse_no_check_send_proxy , 0 , 1 , 0 } , /* Disable PROXY protocol for health checks */
2021-07-23 10:34:58 -04:00
{ " rise " , srv_parse_check_rise , 1 , 1 , 1 } , /* Set rise value for health checks */
{ " fall " , srv_parse_check_fall , 1 , 1 , 1 } , /* Set fall value for health checks */
{ " inter " , srv_parse_check_inter , 1 , 1 , 1 } , /* Set inter value for health checks */
{ " fastinter " , srv_parse_check_fastinter , 1 , 1 , 1 } , /* Set fastinter value for health checks */
{ " downinter " , srv_parse_check_downinter , 1 , 1 , 1 } , /* Set downinter value for health checks */
{ " port " , srv_parse_check_port , 1 , 1 , 1 } , /* Set the TCP port used for health checks. */
2020-04-06 08:26:30 -04:00
{ NULL , NULL , 0 } ,
} } ;
INITCALL1 ( STG_REGISTER , srv_register_keywords , & srv_kws ) ;
2020-03-25 13:20:15 -04:00
2006-06-25 20:48:02 -04:00
/*
* Local variables :
* c - indent - level : 8
* c - basic - offset : 8
* End :
*/
