21b148e3a5
Allow Kore to load multiple modules at once.
2013-12-15 01:11:56 +01:00
f2aa206f3b
Add support for client certificates
2013-12-14 16:31:07 +01:00
fc243835c9
Update last_cb_run after we call cb here as well
2013-12-09 11:42:22 +01:00
afeb213260
Kore no longer requires root to be started.
2013-11-18 00:42:57 +01:00
34c2f31a93
Add validators to kore, specified in the configuration using 'validator' keyword.
...
Example:
validator v_id function v_id_function
validator v_url regex ^/url/path/[a-z]*$
You can then call these using kore_validator_run(char *, char *), example:
if (!kore_validator_run("v_url", req->path))
[req->path is bad];
2013-11-09 16:21:52 +01:00
ee3fd3c039
Allow the user defined callback to run on workers as well.
2013-09-03 08:41:09 +02:00
95c8b8e126
Add a callback that Kore can call in your module every given interval.
...
The callback is run from the parent process (which runs as root).
Adds kore_cb and kore_cb_interval configuration options.
2013-09-02 08:52:16 +02:00
659e19f92f
add IPv6 support and support for multiple listeners.
2013-07-27 20:56:15 +02:00
2c1352b226
remove versioning numbers, i hate them.
2013-07-16 15:30:20 +02:00
29fa49ba83
Add fixed size memory pools and use them throughout Kore.
2013-07-15 11:06:36 +02:00
c1723f2db5
Clean up header includes, based on a diff from Ewan Higgs via github.
...
And while we're messing in it, make sure bsd.c compiles again.
2013-07-06 20:55:22 +02:00
eb43fd31e1
remove unused stuff
2013-07-05 16:02:03 +02:00
b4a0330a96
- Better spread load between all worker processes.
...
- Introduce own memory management system on top of malloc to keep track
of all our allocations and free's. Later we should introduce a pooling
mechanism for fixed size allocations (http_request comes to mind).
- Introduce ssl_cipher in configuration.
Memory usage is kind of high right now, but it seems its OpenSSL
doing it rather then Kore.
2013-06-27 08:43:07 +02:00
2fc5233358
Rework the way worker processes give each other the accept lock.
...
Instead of waiting until one worker is filled up on connections
the workers find the next lowest loaded worker and will hand
over the lock to them instead. This will cause a nicer spread of load.
Instead of running one accept per event loop, we attempt to accept
as many as worker_max_connections allows.
Refactor net sending/recv code a bit.
2013-06-27 00:22:48 +02:00
bf1940225a
everybody loves to tout their own horn.. so introduce a server response header
2013-06-26 16:58:01 +02:00
0dda6f996f
Add a form of synchronization between what worker will be accepting
...
new connections and which ones will not be notified for it.
Fixes the thundering herd problem, and nicely spreads out load between
all the workers equally. A configuration option (workers_max_connections)
is available to tweak how many connections a worker will have before
giving up the accept lock.
Two ways are added to this commit for access locking:
- Locking via semaphores.
- Locking via GCC's builtin atomic methods.
The default is running with semaphores disabled (OpenBSD cannot do
sem_init() with pshared set to 1, which is required).
If you want to use semaphores add KORE_USE_SEMAPHORES to CFLAGS,
and -lpthread to LDFLAGS in the Makefile.
Other fixes:
- BSD: add a timeout to kevent().
- Merge kore_worker_wait together, linux knows waitpid() as well.
- Send the correct SIGQUIT signal to workers instead of SIGINT.
- Fix kore_time_ms().
- Log fatal worker messages in syslog.
- Refactor code even more.
- Do not free our own kore_worker structure.
2013-06-26 16:37:22 +02:00
3e5c17b8a3
refactor code quite a bit.
2013-06-26 11:18:32 +02:00
6026a6d4ee
add SNI support, and change domain configuration a bit.
2013-06-24 11:32:45 +02:00
a1b400c400
Add access logging to Kore.
2013-06-24 09:36:40 +02:00
4dff38ebb0
ignore sigpipe in workers
2013-06-19 22:41:00 +02:00
25f1ab9865
Add BSD kqueue(2) support. Compile with make bsd (or make linux for linux)
2013-06-17 23:39:17 +02:00
e170e916ce
Reload the module in the main process as well when SIGHUP is received.
...
Otherwise new worker processes will not receive the updated module.
2013-06-05 13:50:50 +02:00
a74fffe40c
Introduce certfile and certkey in the configuration to specify where the certificate file and keys are located on a system.
...
Free unused vars in the main process after starting.
2013-06-05 09:47:08 +02:00
32a2035ce9
move kore_server_sslstart() into main process, workers will inherit.
2013-06-05 09:32:53 +02:00
b9f47b0f86
configuration files are now passed using the -c option.
...
allow debug output when the -d flag is specified.
2013-06-05 08:55:07 +02:00
ade34a26c1
move chroot() to workers instead, parent process doesn't require it plus it cannot unlink pidfile otherwise.
...
better logging in syslog
2013-06-05 08:45:51 +02:00
90e1b3a7da
use syslog() for informative messages from all parts of kore.
2013-06-04 23:24:47 +02:00
49b77d3b0e
better proctitles
2013-06-04 17:04:28 +02:00
276d8c5a82
oops bring back chroot
2013-06-04 17:01:06 +02:00
ca437a6cef
set process title
2013-06-04 16:58:13 +02:00
9ef669ff6f
write main process pid to /var/run/kore.pid (changable in configuration)
2013-06-04 16:53:30 +02:00
443b1c8c5f
format
2013-06-04 16:33:35 +02:00
e7db5ee6b1
rename kore_log to kore_debug, and allow one to turn it off.
2013-06-04 16:30:53 +02:00
11fca19923
be less spammy
2013-06-04 16:17:42 +02:00
ab0dc25c61
use sched_setaffinity() to set what CPU each worker process should run on.
2013-06-04 13:54:16 +02:00
8f8ab92521
upon quit time, workers will not accept new connections but will
...
handle all outstanding http requests.
2013-06-04 13:43:11 +02:00
0de28488a6
move from multithreads to single threaded worker processes.
2013-06-04 11:55:38 +02:00
b65cc93426
allow handlers to return KORE_RESULT_RETRY. This will tell the worker to reschedule the page request again at the end of its list. (Allows module creators to write truely nonblocking modules).
2013-05-31 00:40:06 +02:00
7dfa7e6ec0
be carefull when we reload the module to not reload it when workers are inside the module callbacks.
...
do this by implementing a pthread rwlock, and locking it for reading when going into a callback and locking it for writing when we need to reload the mod.
2013-05-31 00:06:54 +02:00
fecbd058cb
rework the worker thread so there's actually time to schedule more then one request at a time on them.
2013-05-31 14:24:00 +02:00
e428886e16
decrement the worker load on HTTP_REQUEST_DELETE
2013-05-31 13:30:51 +02:00
bb4001d119
ok that was wrong, disconnect http clients whne we're done sending or upon error, not immediately after queueing everything.
2013-05-30 21:57:14 +02:00
ca1c884e43
attempt to clear out send buffer before we shutdown ssl connection.
...
remove superfleaous debug
2013-05-30 21:39:01 +02:00
ec5ac40706
wake up the workers once in a while to process anything that is waiting.
2013-05-30 20:55:50 +02:00
f9b3cfcee4
reschedule events if we cannot lock the connection at the time being.
2013-05-30 20:38:25 +02:00
9ad263e287
do not remove disconnected connections until we actually are ready to disconnect them.
2013-05-30 20:07:06 +02:00
9243f409cc
move to a worker based threading approach where we delegate http requests to workers in a round robin basis (later this should be swapped to find the laziest worker and assign the request to that instead).
2013-05-30 19:36:42 +02:00
8478d8df54
add chroot and runas directives so we can chroot and drop privilegs properly
2013-05-04 22:18:27 +02:00
ce729010f7
- simplify header building using kore_buf_appendf() for normal HTTP requests.
...
- make sure we dont free nb->buf if its NULL. (semantics).
- remove some superfluffy debug.
- make sure we call [inflate|deflate]End when we dc a client that used zlib.
2013-05-04 20:44:16 +02:00
088d877715
switch dynamic handlers to regex based patterns, much easier.
2013-05-29 14:29:46 +02:00
0be748ee0f
use SSL_CTX_use_certificate_chain_file instead when loading certificates so we can properly use our intermediate authority.
2013-05-29 12:27:30 +02:00
90588913d4
allow sending SIGHUP to kore, which will then reload its content module
2013-05-03 00:04:06 +02:00
f61bbe8ff4
move buf stuff back into kore.h, wont need it separately
2013-05-02 15:14:00 +02:00
84428f7133
move buf stuff into its own header, so we can use it in spdy.h
2013-05-02 14:55:57 +02:00
60ed3e0fd2
the net qeueuing functions don't need to return status codes, simplifies a lot of other code that revolves around those.
...
prepare for POST support
2013-05-02 14:47:02 +02:00
f1fa108f98
begin processing window_update messages
2013-05-02 10:10:03 +02:00
364dc58219
rework disconnecting clients and fix bug where spdy ocnnections could segfault after disconnecting
2013-05-02 09:10:35 +02:00
f46bba50ef
add very basic support for HTTP/1.1.
2013-05-02 03:51:04 +02:00
5f983d575b
add flags to net_recv_queue() and net_send_queue(),.
...
NETBUF_CALL_CB_ALWAYS flag, calls the registered cb everytime data has
been received or sent.
2013-05-02 00:28:49 +02:00
a228cdba0e
introduce kore_split_string() to properly split strings apart.
...
introduce kore_date_to_time() to conver http-date formatted strings to time_t.
2013-05-01 20:10:45 +02:00
d9bbb0b1f1
initial module support
2013-05-01 16:03:48 +02:00
a074258dcc
rework the way events trigger and the way we handle them. follow the manual for once, as edge trigger does not refire until we got an EAGAIN.
...
introduce net_send_flush() and net_recv_flush() for this purpose, we attempt to make as much headway as possible until we reach EAGAIN or until we can simply pickup again later.
should merge all the stuff in http_response() into a single send buffer, **out is in place in net_send_queue() for that purpose.
2013-05-01 13:43:47 +02:00
d59847c448
SPDY works, we can serve content. Now for dynamic modules so we can
...
get stuff on the road.
TODO: add plain HTTP support if SPDY isnt working in the browser.
2013-05-01 12:23:21 +02:00
848704f74b
lots of new stuff, including processing of http requests and an attempt
...
to build an initial spdy response (SYN frame + header block content).
2013-05-01 08:09:04 +02:00
bb3b804222
add beginnings of zlib inflation, not really working. nap time.
2013-04-29 23:35:36 +02:00
c8b422d29d
allow us to expand receive buffers automatically so we can keep chaining data into the same netbuf. This gives us the possibility to retain the ctrl_frame by the time we reach the proper cb for the actual frame message.
2013-04-28 23:42:13 +02:00
23c0ec67c6
begin with the ability to read control frames. something feels fishy with epoll() and its triggering of events. I probably got it wrong.
2013-04-28 19:11:44 +02:00
c6c6b1823f
read next protocol properly and remember it for later.
2013-04-21 20:35:47 +02:00
68d0523817
Add initial SSL stuff + bare bones NPN advertisement. So far chrome connects and
...
shows our connection as SPDY/3, good start.
2013-04-21 20:21:46 +02:00
857c3f9121
first commit
2013-04-17 22:34:27 +02:00
Joris Vink