git.ipfire.org Git - thirdparty/haproxy.git/commit

author	Willy Tarreau <w@1wt.eu>
	Wed, 19 Nov 2025 15:38:29 +0000 (16:38 +0100)
committer	Willy Tarreau <w@1wt.eu>
	Thu, 20 Nov 2025 07:44:52 +0000 (08:44 +0100)
commit	8438ca273f4b174b51b5ff2a504ff5d2278134af
tree	c7a4835b34d8d11659fcb1346e463157967e81b4	tree \| snapshot
parent	91d4f4f618bed38071e6933ef0927f1671fb6c88	commit \| diff

MINOR: limits: explain a bit better what to do when fd limits are exceeded

As shown in github issue #3191, the error message shown when FD limits
are exceeded is not very useful as-is, since the current hard limit is
not displayed, and no suggestion is made about what to change in the
config. Let's explain about maxconn/ulimit-n/fd-hard-limit, suggest
dropping them or setting them to a context-based value at roughly 49%
of the current limit minus the known used FDs for listeners and checks.
This allows common "large" hard limits to report mostly round maxconns.
Example:

  [ALERT]    (25330) : [haproxy.main()] Cannot raise FD limit to 4001020,
  current limit is 1024 and hard limit is 4096. You may prefer to let
  HAProxy adjust the limit by itself; for this, please just drop any
  'maxconn' and 'ulimit-n' from the global section, and possibly add
  'fd-hard-limit' lower than this hard limit. You may also force a new
  'maxconn' value that is a bit lower than half of the hard limit minus
  listeners and checks. This results in roughly 1500 here.