2 * Copyright (C) 1996-2016 The Squid Software Foundation and contributors
4 * Squid software is distributed under GPLv2+ license and includes
5 * contributions from numerous individuals and organizations.
6 * Please see the COPYING and CONTRIBUTORS files for details.
9 #ifndef SQUID_SQUIDCONFIG_H_
10 #define SQUID_SQUIDCONFIG_H_
12 #include "acl/forward.h"
13 #include "base/RefCount.h"
14 #include "base/YesNoNone.h"
15 #include "ClientDelayConfig.h"
16 #include "DelayConfig.h"
17 #include "helper/ChildConfig.h"
18 #include "HttpHeaderTools.h"
19 #include "ip/Address.h"
21 #include "security/forward.h"
22 #include "SquidTime.h"
24 #include "ssl/support.h"
26 #include "store/forward.h"
29 class sslproxy_cert_sign
;
30 class sslproxy_cert_adapt
;
35 class ActionPasswordList
;
43 class RemovalPolicySettings
;
53 RefCount
<SwapDir
> *swapDirs
;
56 /// number of disk processes required to support all cache_dirs
59 #define INDEXSD(i) (Config.cacheSwap.swapDirs[i].getRaw())
62 /// the representation of the configuration. POD.
67 /* These should be for the Store::Root instance.
68 * this needs pluggable parsing to be done smoothly.
74 YesNoNone memShared
; ///< whether the memory cache is shared among workers
75 YesNoNone shmLocking
; ///< shared_memory_locking
84 RemovalPolicySettings
*replPolicy
;
85 RemovalPolicySettings
*memPolicy
;
86 #if USE_HTTP_VIOLATIONS
90 time_t negativeDnsTtl
;
91 time_t positiveDnsTtl
;
92 time_t shutdownLifetime
;
93 time_t backgroundPingRate
;
103 time_t clientIdlePconn
;
104 time_t serverIdlePconn
;
105 time_t ftpClientIdle
;
106 time_t pconnLifetime
; ///< pconn_lifetime in squid.conf
109 time_t request_start_timeout
;
110 int icp_query
; /* msec */
111 int icp_query_max
; /* msec */
112 int icp_query_min
; /* msec */
113 int mcast_icp_query
; /* msec */
114 time_msec_t idns_retransmit
;
115 time_msec_t idns_query
;
118 size_t maxRequestHeaderSize
;
119 int64_t maxRequestBodySize
;
120 size_t maxRequestBufferSize
;
121 size_t maxReplyHeaderSize
;
122 AclSizeLimit
*ReplyBodySize
;
154 Ip::Address_list
*router
;
156 int forwarding_method
;
158 int assignment_method
;
165 char *as_whois_server
;
170 CustomLog
*accesslogs
;
180 char *visible_appname_string
;
181 char *effectiveGroup
;
199 Helper::ChildConfig redirectChildren
;
200 Helper::ChildConfig storeIdChildren
;
201 time_t authenticateGCInterval
;
202 time_t authenticateTTL
;
203 time_t authenticateIpTTL
;
209 size_t appendDomainLen
;
212 char *mimeTablePathname
;
214 char *visibleHostname
;
215 char *uniqueHostname
;
216 wordlist
*hostnameAliases
;
228 Ip::Address udp_incoming
;
229 Ip::Address udp_outgoing
;
231 Ip::Address snmp_incoming
;
232 Ip::Address snmp_outgoing
;
234 /* FIXME INET6 : this should really be a CIDR value */
235 Ip::Address client_netmask
;
238 size_t udpMaxHitObjsz
;
239 wordlist
*mcast_group_list
;
240 wordlist
*dns_nameservers
;
255 Mgr::ActionPasswordList
*passwd_list
;
258 int objectsPerBucket
;
259 int64_t avgObjectSize
;
260 int64_t maxObjectSize
;
261 int64_t minObjectSize
;
262 size_t maxInMemObjSize
;
284 int test_reachability
;
285 int half_closed_clients
;
287 #if USE_HTTP_VIOLATIONS
293 int redir_rewrites_host
;
295 int nonhierarchical_direct
;
296 int strip_query_terms
;
297 int redirector_bypass
;
299 int ignore_unknown_nameservers
;
303 #if USE_CACHE_DIGESTS
305 int digest_generation
;
309 int vary_ignore_expire
;
310 int surrogate_is_remote
;
311 int request_entities
;
312 int detect_broken_server_pconns
;
313 int balance_on_multiple_ip
;
314 int relaxed_header_parser
;
316 int allow_underscore
;
318 int cache_miss_revalidate
;
320 int httpd_suppress_version_string
;
321 int global_internal_static
;
322 int collapsed_forwarding
;
324 #if FOLLOW_X_FORWARDED_FOR
325 int acl_uses_indirect_client
;
326 int delay_pool_uses_indirect_client
;
327 int log_uses_indirect_client
;
329 int tproxy_uses_indirect_client
;
331 #endif /* FOLLOW_X_FORWARDED_FOR */
333 int WIN32_IpAddrChangeMonitor
;
334 int memory_cache_first
;
335 int memory_cache_disk
;
336 int hostStrictVerify
;
337 int client_dst_passthru
;
340 bool logTlsServerHelloDetails
;
344 int64_t collapsed_forwarding_shared_entries_limit
;
346 int pipeline_max_prefetch
;
348 int forward_max_tries
;
355 acl_access
*adapted_http
;
358 acl_access
*NeverDirect
;
359 acl_access
*AlwaysDirect
;
363 acl_access
*storeMiss
;
364 acl_access
*stats_collection
;
369 #if USE_HTTP_VIOLATIONS
370 acl_access
*brokenPosts
;
372 acl_access
*redirector
;
373 acl_access
*store_id
;
375 Acl::Address
*outgoing_address
;
379 acl_access
*htcp_clr
;
383 acl_access
*ssl_bump
;
385 #if FOLLOW_X_FORWARDED_FOR
386 acl_access
*followXFF
;
387 #endif /* FOLLOW_X_FORWARDED_FOR */
389 /// acceptible PROXY protocol clients
390 acl_access
*proxyProtocol
;
392 /// spoof_client_ip squid.conf acl.
393 /// nil unless configured
394 acl_access
* spoof_client_ip
;
395 acl_access
*on_unsupported_protocol
;
397 acl_access
*ftp_epsv
;
399 acl_access
*forceRequestBodyContinuation
;
400 acl_access
*serverPconnForNonretriable
;
402 AclDenyInfoList
*denyInfoList
;
415 RefreshPattern
*Refresh
;
417 Store::DiskConfig cacheSwap
;
423 char *errorDirectory
;
425 char *errorDefaultLanguage
;
426 int errorLogMissingLanguages
;
428 char *errorStylesheet
;
440 ClientDelayConfig ClientDelay
;
449 int max_open_disk_fds
;
451 AclSizeLimit
*rangeOffsetLimit
;
452 #if MULTICAST_MISS_STREAM
463 /// request_header_access and request_header_replace
464 HeaderManglers
*request_header_access
;
465 /// reply_header_access and reply_header_replace
466 HeaderManglers
*reply_header_access
;
467 ///request_header_add access list
468 HeaderWithAclList
*request_header_add
;
469 ///reply_header_add access list
470 HeaderWithAclList
*reply_header_add
;
475 #if USE_CACHE_DIGESTS
479 time_t rebuild_period
;
480 time_t rewrite_period
;
481 size_t swapout_chunk_size
;
482 int rebuild_chunk_percentage
;
488 int unclean_shutdown
;
491 size_t sessionCacheSize
;
496 wordlist
*ext_methods
;
503 char *store_dir_select_algorithm
;
504 int sleep_after_fork
; /* microseconds */
505 time_t minimum_expiry_time
; /* seconds */
506 external_acl
*externalAclHelperList
;
509 Security::ContextPtr sslContext
;
511 char *foreignIntermediateCertsPath
;
512 acl_access
*cert_error
;
513 sslproxy_cert_sign
*cert_sign
;
514 sslproxy_cert_adapt
*cert_adapt
;
520 int max_filedescriptors
;
522 CpuAffinityMap
*cpuAffinityMap
;
524 #if USE_LOADABLE_MODULES
525 wordlist
*loadable_module_names
;
528 int client_ip_max_connections
;
530 char *redirector_extras
;
532 struct UrlHelperTimeout
{
535 } onUrlRewriteTimeout
;
537 char *storeId_extras
;
540 int v4_first
; ///< Place IPv4 first in the order of DNS results.
541 ssize_t packet_max
; ///< maximum size EDNS advertised for DNS replies.
546 extern SquidConfig Config
;
554 uid_t effectiveUserID
;
555 gid_t effectiveGroupID
;
558 extern SquidConfig2 Config2
;
560 #endif /* SQUID_SQUIDCONFIG_H_ */