Willy Tarreau | 5f0eee7 | 2013-06-17 14:51:38 +0200 | [diff] [blame] | 1 | Medium-long term roadmap - 2013/06/17 |
willy tarreau | 814cbc6 | 2006-05-13 13:00:29 +0200 | [diff] [blame] | 2 | |
Willy Tarreau | 21475e3 | 2010-05-23 08:46:08 +0200 | [diff] [blame] | 3 | Legend: '+' = done, '-' = todo, '*' = done except doc |
willy tarreau | 814cbc6 | 2006-05-13 13:00:29 +0200 | [diff] [blame] | 4 | |
Willy Tarreau | 5f0eee7 | 2013-06-17 14:51:38 +0200 | [diff] [blame] | 5 | 1.5 (ETA 2013/12/31) : |
Willy Tarreau | 65ce391 | 2010-11-24 16:21:56 +0100 | [diff] [blame] | 6 | - POST parameter extraction and size/speed measurement to use in ACLs |
Willy Tarreau | 0a6b1fd | 2010-11-14 14:23:22 +0100 | [diff] [blame] | 7 | |
Willy Tarreau | 21475e3 | 2010-05-23 08:46:08 +0200 | [diff] [blame] | 8 | - return-html code xxx [ file "xxx" | text "xxx" ] if <acl> |
willy tarreau | 1f431b5 | 2006-05-21 14:46:15 +0200 | [diff] [blame] | 9 | |
Willy Tarreau | 65ce391 | 2010-11-24 16:21:56 +0100 | [diff] [blame] | 10 | - return-raw [ file "xxx" | text "xxx" ] if <acl> |
| 11 | |
Willy Tarreau | 0a6b1fd | 2010-11-14 14:23:22 +0100 | [diff] [blame] | 12 | - avg connect time, response time, connect errors, response errors in stats |
| 13 | |
Willy Tarreau | 65ce391 | 2010-11-24 16:21:56 +0100 | [diff] [blame] | 14 | - add a last activity date for each server (req/resp) that will be |
| 15 | displayed in the stats. It will be useful with soft stop. |
| 16 | |
| 17 | - add the ability to only dump response errors to more easily detect |
| 18 | anomalies without being polluted with attacks in requests. |
| 19 | |
Willy Tarreau | 65ce391 | 2010-11-24 16:21:56 +0100 | [diff] [blame] | 20 | - add support for server-side unix sockets |
willy tarreau | 38d7906 | 2006-05-21 14:47:13 +0200 | [diff] [blame] | 21 | |
Willy Tarreau | 0a6b1fd | 2010-11-14 14:23:22 +0100 | [diff] [blame] | 22 | - have multi-criteria analysers which subscribe to req flags, rsp flags, and |
| 23 | stream interface changes. This would result in a single analyser to wait |
| 24 | for the end of data transfer in HTTP. |
| 25 | |
Willy Tarreau | 21475e3 | 2010-05-23 08:46:08 +0200 | [diff] [blame] | 26 | - implement support for "connection freeze" after accept. A list of frozen |
| 27 | connections should be maintained so that it is possible to recycle them |
| 28 | when new file descriptors are required. |
Willy Tarreau | 1c47f85 | 2006-07-09 08:22:27 +0200 | [diff] [blame] | 29 | |
Willy Tarreau | 21475e3 | 2010-05-23 08:46:08 +0200 | [diff] [blame] | 30 | - support for time-ordered priority queues with ability to add an offset |
| 31 | based on request matching. Each session will have one ebtree node to be |
| 32 | attached to whatever queue the session is waiting in. |
Willy Tarreau | 1c47f85 | 2006-07-09 08:22:27 +0200 | [diff] [blame] | 33 | |
Willy Tarreau | 0a6b1fd | 2010-11-14 14:23:22 +0100 | [diff] [blame] | 34 | - half-closed timeouts ? |
| 35 | |
| 36 | - add a flag in logs to indicate keep-alive requests ? |
willy tarreau | 814cbc6 | 2006-05-13 13:00:29 +0200 | [diff] [blame] | 37 | |
Willy Tarreau | 5f0eee7 | 2013-06-17 14:51:38 +0200 | [diff] [blame] | 38 | - make it possible to condition a timeout on an ACL (dynamic timeouts) |
Willy Tarreau | 0a6b1fd | 2010-11-14 14:23:22 +0100 | [diff] [blame] | 39 | |
| 40 | - forwardfor/originalto except with IPv6 |
| 41 | |
| 42 | - have a callback function which would be called after a server is selected, |
| 43 | for header post-processing. That would be mainly used to remove then add |
| 44 | the server's name or cookie in a header so that the server knows it. |
| 45 | |
| 46 | - remove lots of remaining Alert() calls or ensure that they forward to |
| 47 | send_log() after the fork. |
| 48 | |
Willy Tarreau | 5f0eee7 | 2013-06-17 14:51:38 +0200 | [diff] [blame] | 49 | - tcp-request session |
| 50 | |
Willy Tarreau | 3c21237 | 2013-12-17 00:35:27 +0100 | [diff] [blame] | 51 | - tcp-request session expect-proxy {L4|L5} if ... |
Willy Tarreau | 5f0eee7 | 2013-06-17 14:51:38 +0200 | [diff] [blame] | 52 | |
Willy Tarreau | 3c21237 | 2013-12-17 00:35:27 +0100 | [diff] [blame] | 53 | - http-request track-sc* to avoid having the ugly "if !HTTP" in tcp-request |
Willy Tarreau | 5f0eee7 | 2013-06-17 14:51:38 +0200 | [diff] [blame] | 54 | |
| 55 | - compression : to be fixed |
| 56 | |
Willy Tarreau | 0a6b1fd | 2010-11-14 14:23:22 +0100 | [diff] [blame] | 57 | DONE: |
Willy Tarreau | 3c21237 | 2013-12-17 00:35:27 +0100 | [diff] [blame] | 58 | * server-side HTTP keepalive |
| 59 | => maybe with limitation to only reuse connections that don't depend |
| 60 | on layer7 in a first time (just check the target). |
| 61 | |
| 62 | * add support for complex pattern extraction rules : |
| 63 | |
| 64 | pattern = <pattern_term> |
| 65 | | '{' pattern_expr '}' |
| 66 | |
| 67 | pattern_expr = <pattern_term> [ <transform> ... ] |
| 68 | => changed to <sample>[,<conv>]* |
| 69 | |
| 70 | * support loading data sets from files |
| 71 | * present/not present (eg: netmasks) |
| 72 | * pattern conversion per prefixes. Eg: convert src IP to country. |
| 73 | => maps |
| 74 | |
| 75 | * what to do with data after a POST and how to detect some data were |
| 76 | received when responding ? In theory we should read everything because |
| 77 | the TCP stack does not notify us that the FIN was acked. In practice, |
| 78 | reading just before closing should be enough. Right now we simply read |
| 79 | whatever comes after the POST. |
| 80 | => switch the connection to a "drain" state, where it monitors its |
| 81 | output queue on each I/O and where it can be stolen if fds are |
| 82 | missing. |
| 83 | |
| 84 | * tcp-request {connection|session} expect-proxy {L4|L5} if ... |
| 85 | |
Willy Tarreau | 0a6b1fd | 2010-11-14 14:23:22 +0100 | [diff] [blame] | 86 | * rename L4 acls as L6 ACLs when some content is involved |
| 87 | |
| 88 | * add new L4 ACL checks immediately after accept, before even allocating the |
| 89 | buffers ("connection {accept|reject|delay|freeze} {if|unless}"). |
| 90 | |
| 91 | * make new patterns available based on stickiness matching : |
| 92 | * number of entries in table for the matched pattern |
| 93 | * same after having increased the match counter |
| 94 | |
| 95 | * add support for concurrency match in tables |
| 96 | * just like stickiness, but counted per session (or request), increased |
Willy Tarreau | 21475e3 | 2010-05-23 08:46:08 +0200 | [diff] [blame] | 97 | on first match and decreased at end of request or connection. This |
| 98 | requires that the session has a list of matched terms that must be |
| 99 | released at the end. |
willy tarreau | 814cbc6 | 2006-05-13 13:00:29 +0200 | [diff] [blame] | 100 | |
Willy Tarreau | 0a6b1fd | 2010-11-14 14:23:22 +0100 | [diff] [blame] | 101 | * http_req_first ACL |
| 102 | |
| 103 | * expirable cookies + "preserve" |
| 104 | |
| 105 | * ECV, LDAPv3 & MySQL checks |
| 106 | |
| 107 | * configurable check buffer size |
| 108 | |
| 109 | * stats + ON/OFF |
| 110 | |
| 111 | * halog: sort by URL |
| 112 | |
| 113 | * "PROXY" protocol |
| 114 | |
Willy Tarreau | 65ce391 | 2010-11-24 16:21:56 +0100 | [diff] [blame] | 115 | * add support for client-side unix sockets |
| 116 | |
| 117 | * hash: rehash non-consistent hashes with chash() for more randomness. |
| 118 | |
Willy Tarreau | b549555 | 2011-03-01 21:28:51 +0100 | [diff] [blame] | 119 | * add an error ID in captures to ease new error detection for scripts. |
| 120 | |
Willy Tarreau | a1525cd | 2011-03-16 06:54:36 +0100 | [diff] [blame] | 121 | * try to remove srv==NULL internally and assign a dummy server to each backend |
| 122 | for dispatch, http_proxy and transparent modes. => done differently with the |
| 123 | target descriptors. The dummy server code exists in the "dummysrv" branch |
| 124 | which will die since it does not make sense anymore. |
| 125 | |
Willy Tarreau | be2e1d3 | 2011-03-29 01:00:12 +0200 | [diff] [blame] | 126 | * ACL to report number of used entries in a table |
| 127 | |
Willy Tarreau | bf8f681 | 2011-09-10 23:40:59 +0200 | [diff] [blame] | 128 | * automatically compute fullconn for backends : by default, set it to |
| 129 | 10% of the sum of the maxconn of all unique frontends which reference |
| 130 | it via use_backend, default_backend or that are in the same listen. |
| 131 | |
| 132 | * count number of monitor requests on frontends, that's the only way |
| 133 | to explain the possible huge difference between frontend and backend |
| 134 | sessions. |
| 135 | |
Willy Tarreau | 5f0eee7 | 2013-06-17 14:51:38 +0200 | [diff] [blame] | 136 | * assign a nice priority based on ACLs. |
| 137 | |
| 138 | * set-log-level if <acl> (front/back) |
| 139 | |
| 140 | * fix "PR--" flags when accessing stats |
| 141 | |
| 142 | * merged ACL/fetches |
| 143 | |
| 144 | * use_server ... if ... |
| 145 | |
| 146 | * ability to kill an arbitrary session from the command line. Put a "kill now" |
| 147 | flag in every session which preempts any other processing and wake the |
| 148 | session up. |
Willy Tarreau | 65ce391 | 2010-11-24 16:21:56 +0100 | [diff] [blame] | 149 | |
Willy Tarreau | 21475e3 | 2010-05-23 08:46:08 +0200 | [diff] [blame] | 150 | 1.6 (will probably change anyway) : |
Willy Tarreau | 5f0eee7 | 2013-06-17 14:51:38 +0200 | [diff] [blame] | 151 | - wait on resource (time, mem, CPU, socket, buffers, server's conn, server's rate, ...) |
willy tarreau | 814cbc6 | 2006-05-13 13:00:29 +0200 | [diff] [blame] | 152 | |
Willy Tarreau | 21475e3 | 2010-05-23 08:46:08 +0200 | [diff] [blame] | 153 | - bandwidth limits |
willy tarreau | 814cbc6 | 2006-05-13 13:00:29 +0200 | [diff] [blame] | 154 | |
Willy Tarreau | 21475e3 | 2010-05-23 08:46:08 +0200 | [diff] [blame] | 155 | - create internal services and make stats, CLI, etc... part of that. |
Willy Tarreau | 1c47f85 | 2006-07-09 08:22:27 +0200 | [diff] [blame] | 156 | |
Willy Tarreau | 21475e3 | 2010-05-23 08:46:08 +0200 | [diff] [blame] | 157 | - buddy servers to build defined lists of failovers. Detect loops during |
| 158 | the config check. |
| 159 | |
| 160 | server XXX buddy YYY |
| 161 | server YYY # may replace XXX when XXX fails |
| 162 | |
| 163 | - spare servers : servers which are used in LB only when a minimum farm |
| 164 | weight threshold is not satisfied anymore. Useful for inter-site LB with |
| 165 | local pref by default. |
| 166 | |
Willy Tarreau | 65ce391 | 2010-11-24 16:21:56 +0100 | [diff] [blame] | 167 | - add support for event-triggered epoll, and maybe change all events handling |
| 168 | to pass through an event cache to handle temporarily disabled events. |
| 169 | |
| 170 | - evaluate the changes required for multi-process+shared mem or multi-thread |
| 171 | +thread-local+fast locking. |
Willy Tarreau | 1c47f85 | 2006-07-09 08:22:27 +0200 | [diff] [blame] | 172 | |
Willy Tarreau | b549555 | 2011-03-01 21:28:51 +0100 | [diff] [blame] | 173 | - ability to decide whether to drain or kill sessions when putting a server |
| 174 | to maintenance mode => requires a per-server session list and the change |
| 175 | above. |
| 176 | |
Willy Tarreau | 21475e3 | 2010-05-23 08:46:08 +0200 | [diff] [blame] | 177 | Old, maybe obsolete points |
| 178 | - clarify licence by adding a 'MODULE_LICENCE("GPL")' or something equivalent. |
| 179 | |
| 180 | - 3 memory models : failsafe (prealloc), normal (current), optimal (alloc on |
| 181 | demand) |
| 182 | |
Willy Tarreau | 21475e3 | 2010-05-23 08:46:08 +0200 | [diff] [blame] | 183 | - implement support for event-triggerred epoll() |
| 184 | |
| 185 | - verify if it would be worth implementing an epoll_ctl_batch() for Linux |
| 186 | |
| 187 | - option minservers XXX : activates some spare servers when active servers |
| 188 | are insufficient |
Willy Tarreau | 1c47f85 | 2006-07-09 08:22:27 +0200 | [diff] [blame] | 189 | |
| 190 | - new keyword 'check' : check http xxx, check smtp xxx, check ssl-hello |
| 191 | |
Willy Tarreau | bf8f681 | 2011-09-10 23:40:59 +0200 | [diff] [blame] | 192 | - initcwnd parameter for bind sockets : needed in kernel first |
Willy Tarreau | 5f0eee7 | 2013-06-17 14:51:38 +0200 | [diff] [blame] | 193 | |
| 194 | Unsorted : |
| 195 | - outgoing log load-balancing (round-robin or hash among multiple servers) |
| 196 | - internal socket for "server XXX frontend:name" |
| 197 | - ACL feeding via the UNIX socket |
| 198 | - HTTP/2.0 |
| 199 | - DNS requests on health checks |
| 200 | - XML inspection (content-switching for SOAP requests) |
| 201 | - lookup tables (eg: map IP to country) |
| 202 | - sync all stick-tables data, not just serverid. |
| 203 | - request, session and user variables |
| 204 | - random cookie generator |
| 205 | - external checker |
| 206 | - fastcgi to servers |
| 207 | - hot config reload |
| 208 | - RAM-based cache for small files |
| 209 | - RHI - BGP |
| 210 | - telnet/SSH cli |
| 211 | - dynamic memory allocation |
| 212 | - dynamic weights based on check response headers and traffic response time |
| 213 | - various kernel-level acceleration (multi-accept, ssplice, epoll2...) |
| 214 | - "show stats detail" with a different output format and encoding of quotes |