git.ipfire.org Git - thirdparty/pdns.git/commit

author	Remi Gacogne <remi.gacogne@powerdns.com>
	Wed, 21 Jun 2023 08:55:28 +0000 (10:55 +0200)
committer	Remi Gacogne <remi.gacogne@powerdns.com>
	Thu, 7 Sep 2023 08:22:02 +0000 (10:22 +0200)
commit	e80c3b09f318380b6536cfdd83c07b1c8a84edd7
tree	16a85887518ae03671768fdb36d2c55b6d0eeca7	tree
parent	188dbe7176cbb364b45eec5e622263989ebd79fd	commit \| diff

dnsdist: Implement read-ahead support for incoming TLS connections

Read-ahead instructs OpenSSL to read more than the number of bytes
we requested from the incoming connection, if possible, and to buffer
it. This provides a huge performance boost by reducing the number
of syscalls because in most cases the data is already available on
the socket to be read even if we cannot know that yet without reading
the data length.
There are two drawbacks:
- we can keep reading on a connection in a loop as long as there is
  data available, which should be prevented by our number of concurrent
  requests limit ;
- we need to always try to read all the data available before asking
  the kernel to wake us up when the socket is readable, because the
  data buffered by OpenSSL is obviously not visible to the kernel so
  we could wait forever.

pdns/dnsdist-lua.cc		diff \| blob \| blame \| history
pdns/dnsdist-tcp.cc		diff \| blob \| blame \| history
pdns/dnsdistdist/dnsdist-nghttp2-in.cc		diff \| blob \| blame \| history
pdns/dnsdistdist/dnsdist-nghttp2-in.hh		diff \| blob \| blame \| history
pdns/libssl.hh		diff \| blob \| blame \| history
pdns/tcpiohandler.cc		diff \| blob \| blame \| history