MEDIUM: tcp: add registration and processing of TCP L5 rules This commit introduces "tcp-request session" rules. These are very much like "tcp-request connection" rules except that they're processed after the handshake, so it is possible to consider SSL information and addresses rewritten by the proxy protocol header in actions. This is particularly useful to track proxied sources as this was not possible before, given that tcp-request content rules are processed after each HTTP request. Similarly it is possible to assign the proxied source address or the client's cert to a variable.

commit: 620408f406dcd3210508e84cd23270108644bbab [log] [tgz]
author: Willy Tarreau <w@1wt.eu> Fri Oct 21 16:37:51 2016 +0200
committer: Willy Tarreau <w@1wt.eu> Fri Oct 21 18:19:24 2016 +0200
tree: 4218ba042454b0d55cee57afdcae9755c8cb9ddb
parent: 27df66e8d961f2b5c6dae985f6f6d600a57ac4ca [diff] [blame]
diff --git a/include/common/cfgparse.h b/include/common/cfgparse.h
index d785327..6dc6ad5 100644
--- a/include/common/cfgparse.h
+++ b/include/common/cfgparse.h

@@ -75,6 +75,7 @@
                          int (*section_parser)(const char *, int, char **, int));
 void cfg_unregister_sections(void);
 int warnif_misplaced_tcp_conn(struct proxy *proxy, const char *file, int line, const char *arg);
+int warnif_misplaced_tcp_sess(struct proxy *proxy, const char *file, int line, const char *arg);
 int warnif_misplaced_tcp_cont(struct proxy *proxy, const char *file, int line, const char *arg);
 
 /*
commit	620408f406dcd3210508e84cd23270108644bbab	[log] [tgz]
author	Willy Tarreau <w@1wt.eu>	Fri Oct 21 16:37:51 2016 +0200
committer	Willy Tarreau <w@1wt.eu>	Fri Oct 21 18:19:24 2016 +0200
tree	4218ba042454b0d55cee57afdcae9755c8cb9ddb
parent	27df66e8d961f2b5c6dae985f6f6d600a57ac4ca [diff] [blame]