Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / bf47aeb9469b54b0547922bdffe3fcd8e70aac1e
commitbf47aeb9469b54b0547922bdffe3fcd8e70aac1e[log] [tgz]
authorCyril Bonté <cyril.bonte@free.fr>Thu Oct 15 00:15:40 2009 +0200
committerWilly Tarreau <w@1wt.eu>Sun Oct 18 11:56:26 2009 +0200
tree40d4e869054d7485ac2638ef5a2a5e655cade4cf
parentf1ba4b3de56e857862f0c2b4d40541487a724a7c [diff]
[MEDIUM] appsession: add the "request-learn" option

This patch has 2 goals :

1. I wanted to test the appsession feature with a small PHP code,
using PHPSESSID. The problem is that when PHP gets an unknown session
id, it creates a new one with this ID. So, when sending an unknown
session to PHP, persistance is broken : haproxy won't see any new
cookie in the response and will never attach this session to a
specific server.

This also happens when you restart haproxy : the internal hash becomes
empty and all sessions loose their persistance (load balancing the
requests on all backend servers, creating a new session on each one).
For a user, it's like the service is unusable.

The patch modifies the code to make haproxy also learn the persistance
from the client : if no session is sent from the server, then the
session id found in the client part (using the URI or the client cookie)
is used to associated the server that gave the response.

As it's probably not a feature usable in all cases, I added an option
to enable it (by default it's disabled). The syntax of appsession becomes :

  appsession <cookie> len <length> timeout <holdtime> [request-learn]

This helps haproxy repair the persistance (with the risk of losing its
session at the next request, as the user will probably not be load
balanced to the same server the first time).

2. This patch also tries to reduce the memory usage.
Here is a little example to explain the current behaviour :
- Take a Tomcat server where /session.jsp is valid.
- Send a request using a cookie with an unknown value AND a path
  parameter with another unknown value :

  curl -b "JSESSIONID=12345678901234567890123456789012" http://<haproxy>/session.jsp;jsessionid=00000000000000000000000000000001

(I know, it's unexpected to have a request like that on a live service)
Here, haproxy finds the URI session ID and stores it in its internal
hash (with no server associated). But it also finds the cookie session
ID and stores it again.

- As a result, session.jsp sends a new session ID also stored in the
  internal hash, with a server associated.

=> For 1 request, haproxy has stored 3 entries, with only 1 which will be usable

The patch modifies the behaviour to store only 1 entry (maximum).
8 files changed
tree: 40d4e869054d7485ac2638ef5a2a5e655cade4cf
  1. contrib/
  2. doc/
  3. examples/
  4. include/
  5. src/
  6. tests/
  7. .gitignore
  8. CHANGELOG
  9. CONTRIB
  10. LICENSE
  11. Makefile
  12. Makefile.bsd
  13. Makefile.osx
  14. README
  15. ROADMAP
  16. SUBVERS
  17. TODO
  18. VERDATE
  19. VERSION