Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / 403edff4b81e6e7dacc0a71e293101898fb292f4
commit403edff4b81e6e7dacc0a71e293101898fb292f4[log] [tgz]
authorWilly Tarreau <w@1wt.eu>Thu Sep 06 11:58:37 2012 +0200
committerWilly Tarreau <w@1wt.eu>Thu Sep 06 12:10:43 2012 +0200
tree4b267709c50ebb7d938e8e418d05c5c89146a61a
parentcbaaec475c55d65d21ce87d221e69545ae63b75a [diff]
MEDIUM: config: implement maxsslconn in the global section

SSL connections take a huge amount of memory, and unfortunately openssl
does not check malloc() returns and easily segfaults when too many
connections are used.

The only solution against this is to provide a global maxsslconn setting
to reject SSL connections above the limit in order to avoid reaching
unsafe limits.
5 files changed
tree: 4b267709c50ebb7d938e8e418d05c5c89146a61a
  1. contrib/
  2. doc/
  3. ebtree/
  4. examples/
  5. include/
  6. src/
  7. tests/
  8. .gitignore
  9. CHANGELOG
  10. LICENSE
  11. Makefile
  12. Makefile.bsd
  13. Makefile.osx
  14. README
  15. ROADMAP
  16. SUBVERS
  17. TODO
  18. VERDATE
  19. VERSION