2 * SQUID Web Proxy Cache http://www.squid-cache.org/
3 * ----------------------------------------------------------
5 * Squid is the result of efforts by numerous individuals from
6 * the Internet community; see the CONTRIBUTORS file for full
7 * details. Many organizations have provided support for Squid's
8 * development; see the SPONSORS file for full details. Squid is
9 * Copyrighted (C) 2001 by the Regents of the University of
10 * California; see the COPYRIGHT file for full details. Squid
11 * incorporates software developed and/or copyrighted by other
12 * sources; see the CREDITS file for full details.
14 * This program is free software; you can redistribute it and/or modify
15 * it under the terms of the GNU General Public License as published by
16 * the Free Software Foundation; either version 2 of the License, or
17 * (at your option) any later version.
19 * This program is distributed in the hope that it will be useful,
20 * but WITHOUT ANY WARRANTY; without even the implied warranty of
21 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
22 * GNU General Public License for more details.
24 * You should have received a copy of the GNU General Public License
25 * along with this program; if not, write to the Free Software
26 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111, USA.
29 #ifndef SQUID_STRUCTS_H
30 #define SQUID_STRUCTS_H
37 /* needed for the global config */
38 #include "HttpHeader.h"
41 #include "icp_opcode.h"
44 #include <openssl/ssl.h>
47 #define PEER_MULTICAST_SIBLINGS 1
49 struct acl_name_list
{
50 char name
[ACL_NAME_SZ
];
54 struct acl_deny_info_list
{
57 acl_name_list
*acl_list
;
58 acl_deny_info_list
*next
;
64 struct _header_mangler
{
65 acl_access
*access_list
;
73 struct _snmp_request_t
{
84 ACLChecklist
*acl_checklist
;
87 struct snmp_session session
;
132 #include "DelayConfig.h"
133 #include "ClientDelayConfig.h"
137 #include "icmp/IcmpConfig.h"
140 #include "HelperChildConfig.h"
142 /* forward decl for SquidConfig, see RemovalPolicy.h */
144 class CpuAffinityMap
;
145 class RemovalPolicySettings
;
149 /// Used for boolean enabled/disabled options with complex default logic.
150 /// Allows Squid to compute the right default after configuration.
151 /// Checks that not-yet-defined option values are not used.
153 // TODO: generalize to non-boolean option types
155 YesNoNone(): option(0) {}
157 /// returns true iff enabled; asserts if the option has not been configured
158 operator void *() const; // TODO: use a fancy/safer version of the operator
160 /// enables or disables the option;
161 void configure(bool beSet
);
163 /// whether the option was enabled or disabled, by user or Squid
164 bool configured() const { return option
!= 0; }
167 enum { optUnspecified
= -1, optDisabled
= 0, optEnabled
= 1 };
168 int option
; ///< configured value or zero
174 /* These should be for the Store::Root instance.
175 * this needs pluggable parsing to be done smoothly.
181 YesNoNone memShared
; ///< whether the memory cache is shared among workers
189 int64_t readAheadGap
;
190 RemovalPolicySettings
*replPolicy
;
191 RemovalPolicySettings
*memPolicy
;
192 #if USE_HTTP_VIOLATIONS
196 time_t negativeDnsTtl
;
197 time_t positiveDnsTtl
;
198 time_t shutdownLifetime
;
199 time_t backgroundPingRate
;
209 time_t persistent_request
;
213 int icp_query
; /* msec */
214 int icp_query_max
; /* msec */
215 int icp_query_min
; /* msec */
216 int mcast_icp_query
; /* msec */
221 time_msec_t idns_retransmit
;
222 time_msec_t idns_query
;
226 size_t maxRequestHeaderSize
;
227 int64_t maxRequestBodySize
;
228 int64_t maxChunkedRequestBodySize
;
229 size_t maxRequestBufferSize
;
230 size_t maxReplyHeaderSize
;
231 acl_size_t
*ReplyBodySize
;
246 http_port_list
*http
;
249 https_port_list
*https
;
271 Ip::Address_list
*router
;
273 int forwarding_method
;
275 int assignment_method
;
286 char *as_whois_server
;
291 customlog
*accesslogs
;
301 char *visible_appname_string
;
302 char *effectiveGroup
;
324 HelperChildConfig dnsChildren
;
327 HelperChildConfig redirectChildren
;
328 time_t authenticateGCInterval
;
329 time_t authenticateTTL
;
330 time_t authenticateIpTTL
;
336 size_t appendDomainLen
;
339 char *mimeTablePathname
;
341 char *visibleHostname
;
342 char *uniqueHostname
;
343 wordlist
*hostnameAliases
;
355 Ip::Address udp_incoming
;
356 Ip::Address udp_outgoing
;
358 Ip::Address snmp_incoming
;
359 Ip::Address snmp_outgoing
;
361 /* FIXME INET6 : this should really be a CIDR value */
362 Ip::Address client_netmask
;
365 size_t udpMaxHitObjsz
;
366 wordlist
*hierarchy_stoplist
;
367 wordlist
*mcast_group_list
;
368 wordlist
*dns_nameservers
;
383 cachemgr_passwd
*passwd_list
;
386 int objectsPerBucket
;
387 int64_t avgObjectSize
;
388 int64_t maxObjectSize
;
389 int64_t minObjectSize
;
390 size_t maxInMemObjSize
;
412 int test_reachability
;
413 int half_closed_clients
;
415 #if USE_HTTP_VIOLATIONS
421 int redir_rewrites_host
;
423 int nonhierarchical_direct
;
424 int strip_query_terms
;
425 int redirector_bypass
;
426 int ignore_unknown_nameservers
;
430 #if USE_CACHE_DIGESTS
432 int digest_generation
;
435 int log_ip_on_direct
;
437 int vary_ignore_expire
;
438 int pipeline_prefetch
;
439 int surrogate_is_remote
;
440 int request_entities
;
441 int detect_broken_server_pconns
;
442 int balance_on_multiple_ip
;
443 int relaxed_header_parser
;
445 int allow_underscore
;
448 int httpd_suppress_version_string
;
449 int global_internal_static
;
452 #if FOLLOW_X_FORWARDED_FOR
453 int acl_uses_indirect_client
;
454 int delay_pool_uses_indirect_client
;
455 int log_uses_indirect_client
;
457 int tproxy_uses_indirect_client
;
459 #endif /* FOLLOW_X_FORWARDED_FOR */
461 int WIN32_IpAddrChangeMonitor
;
462 int memory_cache_first
;
463 int memory_cache_disk
;
464 int client_dst_passthru
;
467 int forward_max_tries
;
474 acl_access
*adapted_http
;
477 acl_access
*NeverDirect
;
478 acl_access
*AlwaysDirect
;
486 #if USE_HTTP_VIOLATIONS
487 acl_access
*brokenPosts
;
489 acl_access
*redirector
;
491 acl_address
*outgoing_address
;
495 acl_access
*htcp_clr
;
499 acl_access
*ssl_bump
;
501 #if FOLLOW_X_FORWARDED_FOR
502 acl_access
*followXFF
;
503 #endif /* FOLLOW_X_FORWARDED_FOR */
509 acl_deny_info_list
*denyInfoList
;
525 RefCount
<SwapDir
> *swapDirs
;
528 ///< number of disk processes required to support all cache_dirs
532 * I'm sick of having to keep doing this ..
534 #define INDEXSD(i) (Config.cacheSwap.swapDirs[(i)].getRaw())
540 char *errorDirectory
;
542 char *errorDefaultLanguage
;
543 int errorLogMissingLanguages
;
545 char *errorStylesheet
;
557 ClientDelayConfig ClientDelay
;
568 int max_open_disk_fds
;
570 acl_size_t
*rangeOffsetLimit
;
571 #if MULTICAST_MISS_STREAM
582 /* one access list per header type we know of */
583 header_mangler request_header_access
[HDR_ENUM_END
];
584 /* one access list per header type we know of */
585 header_mangler reply_header_access
[HDR_ENUM_END
];
588 #if USE_CACHE_DIGESTS
592 time_t rebuild_period
;
593 time_t rewrite_period
;
594 size_t swapout_chunk_size
;
595 int rebuild_chunk_percentage
;
601 int unclean_shutdown
;
606 wordlist
*ext_methods
;
613 char *store_dir_select_algorithm
;
614 int sleep_after_fork
; /* microseconds */
615 time_t minimum_expiry_time
; /* seconds */
616 external_acl
*externalAclHelperList
;
630 acl_access
*cert_error
;
637 int max_filedescriptors
;
639 CpuAffinityMap
*cpuAffinityMap
;
641 #if USE_LOADABLE_MODULES
642 wordlist
*loadable_module_names
;
645 int client_ip_max_connections
;
648 ssize_t packet_max
; ///< maximum size EDNS advertised for DNS replies.
652 SQUIDCEXTERN SquidConfig Config
;
654 struct SquidConfig2
{
657 int mangle_request_headers
;
659 uid_t effectiveUserID
;
660 gid_t effectiveGroupID
;
663 SQUIDCEXTERN SquidConfig2 Config2
;
665 struct _close_handler
{
692 void *wrt_handle_data
;
694 dwrite_q
*write_q_tail
;
703 unsigned long *file_map
;
707 * Note: HttpBody is used only for messages with a small content that is
708 * known a priory (e.g., error messages).
718 #include "SquidString.h"
719 /* http header extention field */
721 class HttpHdrExtField
723 String name
; /* field-name from HTTP/1.1 (no column after name) */
724 String value
; /* field-value from HTTP/1.1 */
727 /* http cache control header field */
742 /* per field statistics */
744 class HttpHeaderFieldStat
748 HttpHeaderFieldStat() : aliveCount(0), seenCount(0), parsCount(0), errCount(0), repCount(0) {}
750 int aliveCount
; /* created but not destroyed (count) */
751 int seenCount
; /* #fields we've seen */
752 int parsCount
; /* #parsing attempts */
753 int errCount
; /* #pasring errors */
754 int repCount
; /* #repetitons */
757 /* compiled version of HttpHeaderFieldAttrs plus stats */
759 class HttpHeaderFieldInfo
763 HttpHeaderFieldInfo() : id (HDR_ACCEPT
), type (ftInvalid
) {}
768 HttpHeaderFieldStat stat
;
771 struct _http_state_flags
{
772 unsigned int proxying
:1;
773 unsigned int keepalive
:1;
774 unsigned int only_if_cached
:1;
775 unsigned int handling1xx
:1; ///< we are ignoring or forwarding 1xx response
776 unsigned int headers_parsed
:1;
777 unsigned int front_end_https
:2;
778 unsigned int originpeer
:1;
779 unsigned int keepalive_broken
:1;
780 unsigned int abuse_detected
:1;
781 unsigned int request_sent
:1;
782 unsigned int do_next_read
:1;
783 unsigned int consume_body_data
:1;
784 unsigned int chunked
:1; ///< reading a chunked response; TODO: rename
785 unsigned int chunked_request
:1; ///< writing a chunked request
786 unsigned int sentLastChunk
:1; ///< do not try to write last-chunk again
789 struct _domain_ping
{
791 int do_ping
; /* boolean */
795 struct _domain_type
{
801 #if USE_CACHE_DIGESTS
803 /* statistics for cache digests and other hit "predictors" */
805 struct _cd_guess_stats
{
806 /* public, read-only */
811 int close_hits
; /* tmp, remove it later */
832 int n_keepalives_sent
;
833 int n_keepalives_recv
;
837 time_t last_connect_failure
;
838 time_t last_connect_probe
;
839 int logged_state
; /* so we can print dead/revived msgs */
840 int conn_open
; /* current opened connections */
845 int counts
[ICP_END
+1];
858 domain_ping
*peer_domain
;
859 domain_type
*typelist
;
863 unsigned int proxy_only
:1;
864 unsigned int no_query
:1;
865 unsigned int background_ping
:1;
866 unsigned int no_digest
:1;
867 unsigned int default_parent
:1;
868 unsigned int roundrobin
:1;
869 unsigned int weighted_roundrobin
:1;
870 unsigned int mcast_responder
:1;
871 unsigned int closest_only
:1;
874 unsigned int htcp_oldsquid
:1;
875 unsigned int htcp_no_clr
:1;
876 unsigned int htcp_no_purge_clr
:1;
877 unsigned int htcp_only_clr
:1;
878 unsigned int htcp_forward_clr
:1;
880 unsigned int no_netdb_exchange
:1;
882 unsigned int no_delay
:1;
884 unsigned int allow_miss
:1;
887 unsigned int set
:1; //If false, whole url is to be used. Overrides others
888 unsigned int scheme
:1;
892 unsigned int params
:1;
895 unsigned int userhash
:1;
897 unsigned int sourcehash
:1;
898 unsigned int originserver
:1;
899 unsigned int no_tproxy
:1;
900 #if PEER_MULTICAST_SIBLINGS
901 unsigned int mcast_siblings
:1;
909 double avg_n_members
;
911 int n_replies_expected
;
916 unsigned int count_event_pending
:1;
917 unsigned int counting
:1;
920 #if USE_CACHE_DIGESTS
926 int tcp_up
; /* 0 if a connect() fails */
928 Ip::Address addresses
[10];
936 double load_multiplier
;
937 double load_factor
; /* normalized weight value */
942 double load_multiplier
;
943 double load_factor
; /* normalized weight value */
948 double load_multiplier
;
949 double load_factor
; /* normalized weight value */
952 char *login
; /* Proxy authorization */
953 time_t connect_timeout
;
954 int connect_fail_limit
;
956 char *domain
; /* Forced domain */
971 SSL_SESSION
*sslSession
;
978 struct _net_db_name
{
979 hash_link hash
; /* must be first */
981 netdbEntry
*net_db_entry
;
984 struct _net_db_peer
{
985 const char *peername
;
992 hash_link hash
; /* must be first */
993 char network
[MAX_IPSTRLEN
];
998 time_t next_ping_time
;
999 time_t last_use_time
;
1009 enum { histSize
= 16 };
1014 int read_hist
[histSize
];
1016 int write_hist
[histSize
];
1023 struct request_flags
{
1024 request_flags(): range(0),nocache(0),ims(0),auth(0),cachable(0),hierarchical(0),loopdetect(0),proxy_keepalive(0),proxying(0),refresh(0),redirected(0),need_validation(0),fail_on_validation_err(0),stale_if_hit(0),accelerated(0),ignore_cc(0),intercepted(0),spoof_client_ip(0),internal(0),internalclient(0),must_keepalive(0),chunked_reply(0),stream_error(0),sslBumped(0),destinationIPLookedUp_(0) {
1025 #if USE_HTTP_VIOLATIONS
1028 #if FOLLOW_X_FORWARDED_FOR
1029 done_follow_x_forwarded_for
= 0;
1030 #endif /* FOLLOW_X_FORWARDED_FOR */
1033 unsigned int range
:1;
1034 unsigned int nocache
:1;
1036 unsigned int auth
:1;
1037 unsigned int cachable
:1;
1038 unsigned int hierarchical
:1;
1039 unsigned int loopdetect
:1;
1040 unsigned int proxy_keepalive
:1;
1041 unsigned int proxying
:
1042 1; /* this should be killed, also in httpstateflags */
1043 unsigned int refresh
:1;
1044 unsigned int redirected
:1;
1045 unsigned int need_validation
:1;
1046 unsigned int fail_on_validation_err
:1; ///< whether we should fail if validation fails
1047 unsigned int stale_if_hit
:1; ///< reply is stale if it is a hit
1048 #if USE_HTTP_VIOLATIONS
1049 unsigned int nocache_hack
:1; /* for changing/ignoring no-cache requests */
1051 unsigned int accelerated
:1;
1052 unsigned int ignore_cc
:1;
1053 unsigned int intercepted
:1; /**< transparently intercepted request */
1054 unsigned int spoof_client_ip
:1; /**< spoof client ip if possible */
1055 unsigned int internal
:1;
1056 unsigned int internalclient
:1;
1057 unsigned int must_keepalive
:1;
1058 unsigned int connection_auth
:1; /** Request wants connection oriented auth */
1059 unsigned int connection_auth_disabled
:1; /** Connection oriented auth can not be supported */
1060 unsigned int connection_proxy_auth
:1; /** Request wants connection oriented auth */
1061 unsigned int pinned
:1; /* Request sent on a pinned connection */
1062 unsigned int auth_sent
:1; /* Authentication forwarded */
1063 unsigned int no_direct
:1; /* Deny direct forwarding unless overriden by always_direct. Used in accelerator mode */
1064 unsigned int chunked_reply
:1; /**< Reply with chunked transfer encoding */
1065 unsigned int stream_error
:1; /**< Whether stream error has occured */
1066 unsigned int sslBumped
:1; /**< ssl-bumped request*/
1068 // When adding new flags, please update cloneAdaptationImmune() as needed.
1070 bool resetTCP() const;
1072 void clearResetTCP();
1073 void destinationIPLookupCompleted();
1074 bool destinationIPLookedUp() const;
1076 // returns a partial copy of the flags that includes only those flags
1077 // that are safe for a related (e.g., ICAP-adapted) request to inherit
1078 request_flags
cloneAdaptationImmune() const;
1080 #if FOLLOW_X_FORWARDED_FOR
1081 unsigned int done_follow_x_forwarded_for
;
1082 #endif /* FOLLOW_X_FORWARDED_FOR */
1085 unsigned int reset_tcp
:1;
1086 unsigned int destinationIPLookedUp_
:1;
1092 struct _link_list
*next
;
1095 struct _cachemgr_passwd
{
1098 cachemgr_passwd
*next
;
1102 const char *pattern
;
1103 regex_t compiled_pattern
;
1110 unsigned int icase
:1;
1111 unsigned int refresh_ims
:1;
1112 unsigned int store_stale
:1;
1113 #if USE_HTTP_VIOLATIONS
1114 unsigned int override_expire
:1;
1115 unsigned int override_lastmod
:1;
1116 unsigned int reload_into_ims
:1;
1117 unsigned int ignore_reload
:1;
1118 unsigned int ignore_no_cache
:1;
1119 unsigned int ignore_no_store
:1;
1120 unsigned int ignore_must_revalidate
:1;
1121 unsigned int ignore_private
:1;
1122 unsigned int ignore_auth
:1;
1129 * "very generic" histogram;
1130 * see important comments on hbase_f restrictions in StatHist.c
1139 hbase_f
*val_in
; /* e.g., log() for log-based histogram */
1140 hbase_f
*val_out
; /* e.g., exp() for log based histogram */
1144 * if you add a field to StatCounters,
1145 * you MUST sync statCountersInitSpecial, statCountersClean, and statCountersCopy
1148 struct _StatCounters
{
1159 kb_t hit_kbytes_out
;
1160 StatHist miss_svc_time
;
1161 StatHist nm_svc_time
;
1162 StatHist nh_svc_time
;
1163 StatHist hit_svc_time
;
1164 StatHist all_svc_time
;
1174 } all
, http
, ftp
, other
;
1187 int replies_dropped
;
1194 StatHist query_svc_time
;
1195 StatHist reply_svc_time
;
1220 #if USE_CACHE_DIGESTS
1222 cd_guess_stats guess
;
1225 StatHist on_xition_count
;
1232 unsigned long int select_loops
;
1237 struct timeval timestamp
;
1238 StatHist comm_icp_incoming
;
1239 StatHist comm_dns_incoming
;
1240 StatHist comm_http_incoming
;
1241 StatHist select_fds_hist
;
1266 int aborted_requests
;
1275 /* per header statistics */
1277 struct _HttpHeaderStat
{
1279 HttpHeaderMask
*owner_mask
;
1281 StatHist hdrUCountDistr
;
1282 StatHist fieldTypeDistr
;
1283 StatHist ccTypeDistr
;
1284 StatHist scTypeDistr
;
1290 int busyDestroyedCount
;
1294 struct _CacheDigest
{
1295 /* public, read-only */
1296 char *mask
; /* bit mask */
1297 int mask_size
; /* mask size in bytes */
1298 int capacity
; /* expected maximum for .count, not a hard limit */
1299 int bits_per_entry
; /* number of bits allocated for each entry from capacity */
1300 int count
; /* number of digested entries */
1301 int del_count
; /* number of deletions performed so far */
1305 struct _store_rebuild_data
{
1306 int objcount
; /* # objects successfully reloaded */
1307 int expcount
; /* # objects expired */
1308 int scancount
; /* # entries scanned or read from state file */
1309 int clashcount
; /* # swapfile clashes avoided */
1310 int dupcount
; /* # duplicates purged */
1311 int cancelcount
; /* # SWAP_LOG_DEL objects purged */
1312 int invalid
; /* # bad lines */
1313 int badflags
; /* # bad e->flags */
1320 #include "format/Format.h"
1321 #include "log/Formats.h"
1325 Format::Format
*logFormat
;
1328 Log::Format::log_type type
;
1331 #endif /* SQUID_STRUCTS_H */