bc_dst ip
bc_dst_port integer
bc_err integer
+bc_err_name string
bc_err_str string
bc_glitches integer
bc_http_major integer
fc_dst_is_local boolean
fc_dst_port integer
fc_err integer
+fc_err_name string
fc_err_str string
fc_fackets integer
fc_glitches integer
connection. See the "fc_err_str" fetch for a full list of error codes
and their corresponding error message.
+bc_err_name : string
+ Returns the internal error name describing what problem happened on the
+ backend connection, resulting in a connection failure. This string is made of
+ a single word and is empty when no error is present. It corresponds to the
+ "name" column in the table presented in the "fc_err_str" keyword.
+
bc_err_str : string
Returns an error message describing what problem happened on the current
backend connection, resulting in a connection failure. See the
described in section 8.2.5). See the "fc_err_str" fetch for a full list of
error codes and their corresponding error message.
+fc_err_name : string
+ Returns the internal error name describing what problem happened on the
+ frontend connection, resulting in a connection failure. This string is made
+ of a single word and is empty when no error is present. It corresponds to the
+ "name" column in the table presented in the "fc_err_str" keyword.
+
fc_err_str : string
Returns an error message describing what problem happened on the current
connection, resulting in a connection failure. This string corresponds to the
"message" part of the error log format (see section 8.2.5). See below for a
full list of error codes and their corresponding error messages :
- +----+---------------------------------------------------------------------------+
- | ID | message |
- +----+---------------------------------------------------------------------------+
- | 0 | "Success" |
- | 1 | "Reached configured maxconn value" |
- | 2 | "Too many sockets on the process" |
- | 3 | "Too many sockets on the system" |
- | 4 | "Out of system buffers" |
- | 5 | "Protocol or address family not supported" |
- | 6 | "General socket error" |
- | 7 | "Source port range exhausted" |
- | 8 | "Can't bind to source address" |
- | 9 | "Out of local source ports on the system" |
- | 10 | "Local source address already in use" |
- | 11 | "Connection closed while waiting for PROXY protocol header" |
- | 12 | "Connection error while waiting for PROXY protocol header" |
- | 13 | "Timeout while waiting for PROXY protocol header" |
- | 14 | "Truncated PROXY protocol header received" |
- | 15 | "Received something which does not look like a PROXY protocol header" |
- | 16 | "Received an invalid PROXY protocol header" |
- | 17 | "Received an unhandled protocol in the PROXY protocol header" |
- | 18 | "Connection closed while waiting for NetScaler Client IP header" |
- | 19 | "Connection error while waiting for NetScaler Client IP header" |
- | 20 | "Timeout while waiting for a NetScaler Client IP header" |
- | 21 | "Truncated NetScaler Client IP header received" |
- | 22 | "Received an invalid NetScaler Client IP magic number" |
- | 23 | "Received an unhandled protocol in the NetScaler Client IP header" |
- | 24 | "Connection closed during SSL handshake" |
- | 25 | "Connection error during SSL handshake" |
- | 26 | "Timeout during SSL handshake" |
- | 27 | "Too many SSL connections" |
- | 28 | "Out of memory when initializing an SSL connection" |
- | 29 | "Rejected a client-initiated SSL renegotiation attempt" |
- | 30 | "SSL client CA chain cannot be verified" |
- | 31 | "SSL client certificate not trusted" |
- | 32 | "Server presented an SSL certificate different from the configured one" |
- | 33 | "Server presented an SSL certificate different from the expected one" |
- | 34 | "SSL handshake failure" |
- | 35 | "SSL handshake failure after heartbeat" |
- | 36 | "Stopped a TLSv1 heartbeat attack (CVE-2014-0160)" |
- | 37 | "Attempt to use SSL on an unknown target (internal error)" |
- | 38 | "Server refused early data" |
- | 39 | "SOCKS4 Proxy write error during handshake" |
- | 40 | "SOCKS4 Proxy read error during handshake" |
- | 41 | "SOCKS4 Proxy deny the request" |
- | 42 | "SOCKS4 Proxy handshake aborted by server" |
- | 43 | "SSL fatal error" |
- | 44 | "Reverse connect failure" |
- | 45 | "Poller reported POLLERR" |
- | 46 | "ECONNREFUSED returned by OS" |
- | 47 | "ECONNRESET returned by OS" |
- | 48 | "ENETUNREACH returned by OS" |
- | 49 | "ENOMEM returned by OS" |
- | 50 | "EBADF returned by OS" |
- | 51 | "EFAULT returned by OS" |
- | 52 | "EINVAL returned by OS" |
- | 53 | "ENCONN returned by OS" |
- | 54 | "ENSOCK returned by OS" |
- | 55 | "ENOBUFS returned by OS" |
- | 56 | "EPIPE returned by OS" |
- +----+---------------------------------------------------------------------------+
+ +----+------------------+-------------------------------------------------------------------------+
+ | ID | name | message |
+ +----+------------------+-------------------------------------------------------------------------+
+ | 0 | - | "Success" |
+ | 1 | CONF_FDLIM | "Reached configured maxconn value" |
+ | 2 | PROC_FDLIM | "Too many sockets on the process" |
+ | 3 | SYS_FDLIM | "Too many sockets on the system" |
+ | 4 | SYS_MEMLIM | "Out of system buffers" |
+ | 5 | NOPROTO | "Protocol or address family not supported" |
+ | 6 | SOCK_ERR | "General socket error" |
+ | 7 | PORT_RANGE | "Source port range exhausted" |
+ | 8 | CANT_BIND | "Can't bind to source address" |
+ | 9 | FREE_PORTS | "Out of local source ports on the system" |
+ | 10 | ADDR_INUSE | "Local source address already in use" |
+ | 11 | PRX_EMPTY | "Connection closed while waiting for PROXY protocol header" |
+ | 12 | PRX_ABORT | "Connection error while waiting for PROXY protocol header" |
+ | 13 | PRX_TIMEOUT | "Timeout while waiting for PROXY protocol header" |
+ | 14 | PRX_TRUNCATED | "Truncated PROXY protocol header received" |
+ | 15 | PRX_NOT_HDR | "Received something which does not look like a PROXY protocol header" |
+ | 16 | PRX_BAD_HDR | "Received an invalid PROXY protocol header" |
+ | 17 | PRX_BAD_PROTO | "Received an unhandled protocol in the PROXY protocol header" |
+ | 18 | CIP_EMPTY | "Connection closed while waiting for NetScaler Client IP header" |
+ | 19 | CIP_ABORT | "Connection error while waiting for NetScaler Client IP header" |
+ | 20 | CIP_TIMEOUT | "Timeout while waiting for a NetScaler Client IP header" |
+ | 21 | CIP_TRUNCATED | "Truncated NetScaler Client IP header received" |
+ | 22 | CIP_BAD_MAGIC | "Received an invalid NetScaler Client IP magic number" |
+ | 23 | CIP_BAD_PROTO | "Received an unhandled protocol in the NetScaler Client IP header" |
+ | 24 | SSL_EMPTY | "Connection closed during SSL handshake" |
+ | 25 | SSL_ABORT | "Connection error during SSL handshake" |
+ | 26 | SSL_TIMEOUT | "Timeout during SSL handshake" |
+ | 27 | SSL_TOO_MANY | "Too many SSL connections" |
+ | 28 | SSL_NO_MEM | "Out of memory when initializing an SSL connection" |
+ | 29 | SSL_RENEG | "Rejected a client-initiated SSL renegotiation attempt" |
+ | 30 | SSL_CA_FAIL | "SSL client CA chain cannot be verified" |
+ | 31 | SSL_CRT_FAIL | "SSL client certificate not trusted" |
+ | 32 | SSL_MISMATCH | "Server presented an SSL certificate different from the configured one" |
+ | 33 | SSL_MISMATCH_SNI | "Server presented an SSL certificate different from the expected one" |
+ | 34 | SSL_HANDSHAKE | "SSL handshake failure" |
+ | 35 | SSL_HANDSHAKE_HB | "SSL handshake failure after heartbeat" |
+ | 36 | SSL_KILLED_HB | "Stopped a TLSv1 heartbeat attack (CVE-2014-0160)" |
+ | 37 | SSL_NO_TARGET | "Attempt to use SSL on an unknown target (internal error)" |
+ | 38 | SSL_EARLY_FAILED | "Server refused early data" |
+ | 39 | SOCKS4_SEND | "SOCKS4 Proxy write error during handshake" |
+ | 40 | SOCKS4_RECV | "SOCKS4 Proxy read error during handshake" |
+ | 41 | SOCKS4_DENY | "SOCKS4 Proxy deny the request" |
+ | 42 | SOCKS4_ABORT | "SOCKS4 Proxy handshake aborted by server" |
+ | 43 | SSL_FATAL | "SSL fatal error" |
+ | 44 | REVERSE | "Reverse connect failure" |
+ | 45 | POLLERR | "Poller reported POLLERR" |
+ | 46 | EREFUSED | "ECONNREFUSED returned by OS" |
+ | 47 | ERESET | "ECONNRESET returned by OS" |
+ | 48 | EUNREACH | "ENETUNREACH returned by OS" |
+ | 49 | ENOMEM | "ENOMEM returned by OS" |
+ | 50 | EBADF | "EBADF returned by OS" |
+ | 51 | EFAULT | "EFAULT returned by OS" |
+ | 52 | EINVAL | "EINVAL returned by OS" |
+ | 53 | ENCONN | "ENCONN returned by OS" |
+ | 54 | ENSOCK | "ENSOCK returned by OS" |
+ | 55 | ENOBUFS | "ENOBUFS returned by OS" |
+ | 56 | EPIPE | "EPIPE returned by OS" |
+ +----+------------------+-------------------------------------------------------------------------+
fc_fackets : integer
Returns the fack counter measured by the kernel for the client
return 0;
}
+/* returns a short name for an error, typically the same as the enum name
+ * without the "CO_ER_" prefix, or an empty string for no error (better eye
+ * catching in logs). This is more compact for some debug cases.
+ */
+const char *conn_err_code_name(struct connection *c)
+{
+ switch (c->err_code) {
+ case CO_ER_NONE: return "";
+ case CO_ER_CONF_FDLIM: return "CONF_FDLIM";
+ case CO_ER_PROC_FDLIM: return "PROC_FDLIM";
+ case CO_ER_SYS_FDLIM: return "SYS_FDLIM";
+ case CO_ER_SYS_MEMLIM: return "SYS_MEMLIM";
+ case CO_ER_NOPROTO: return "NOPROTO";
+ case CO_ER_SOCK_ERR: return "SOCK_ERR";
+ case CO_ER_PORT_RANGE: return "PORT_RANGE";
+ case CO_ER_CANT_BIND: return "CANT_BIND";
+ case CO_ER_FREE_PORTS: return "FREE_PORTS";
+ case CO_ER_ADDR_INUSE: return "ADDR_INUSE";
+ case CO_ER_PRX_EMPTY: return "PRX_EMPTY";
+ case CO_ER_PRX_ABORT: return "PRX_ABORT";
+ case CO_ER_PRX_TIMEOUT: return "PRX_TIMEOUT";
+ case CO_ER_PRX_TRUNCATED: return "PRX_TRUNCATED";
+ case CO_ER_PRX_NOT_HDR: return "PRX_NOT_HDR";
+ case CO_ER_PRX_BAD_HDR: return "PRX_BAD_HDR";
+ case CO_ER_PRX_BAD_PROTO: return "PRX_BAD_PROTO";
+ case CO_ER_CIP_EMPTY: return "CIP_EMPTY";
+ case CO_ER_CIP_ABORT: return "CIP_ABORT";
+ case CO_ER_CIP_TIMEOUT: return "CIP_TIMEOUT";
+ case CO_ER_CIP_TRUNCATED: return "CIP_TRUNCATED";
+ case CO_ER_CIP_BAD_MAGIC: return "CIP_BAD_MAGIC";
+ case CO_ER_CIP_BAD_PROTO: return "CIP_BAD_PROTO";
+ case CO_ER_SSL_EMPTY: return "SSL_EMPTY";
+ case CO_ER_SSL_ABORT: return "SSL_ABORT";
+ case CO_ER_SSL_TIMEOUT: return "SSL_TIMEOUT";
+ case CO_ER_SSL_TOO_MANY: return "SSL_TOO_MANY";
+ case CO_ER_SSL_NO_MEM: return "SSL_NO_MEM";
+ case CO_ER_SSL_RENEG: return "SSL_RENEG";
+ case CO_ER_SSL_CA_FAIL: return "SSL_CA_FAIL";
+ case CO_ER_SSL_CRT_FAIL: return "SSL_CRT_FAIL";
+ case CO_ER_SSL_MISMATCH: return "SSL_MISMATCH";
+ case CO_ER_SSL_MISMATCH_SNI: return "SSL_MISMATCH_SNI";
+ case CO_ER_SSL_HANDSHAKE: return "SSL_HANDSHAKE";
+ case CO_ER_SSL_HANDSHAKE_HB: return "SSL_HANDSHAKE_HB";
+ case CO_ER_SSL_KILLED_HB: return "SSL_KILLED_HB";
+ case CO_ER_SSL_NO_TARGET: return "SSL_NO_TARGET";
+ case CO_ER_SSL_EARLY_FAILED: return "SSL_EARLY_FAILED";
+ case CO_ER_SOCKS4_SEND: return "SOCKS4_SEND";
+ case CO_ER_SOCKS4_RECV: return "SOCKS4_RECV";
+ case CO_ER_SOCKS4_DENY: return "SOCKS4_DENY";
+ case CO_ER_SOCKS4_ABORT: return "SOCKS4_ABORT";
+ case CO_ER_SSL_FATAL: return "SSL_FATAL";
+ case CO_ER_REVERSE: return "REVERSE";
+ case CO_ER_POLLERR: return "POLLERR";
+ case CO_ER_EREFUSED: return "EREFUSED";
+ case CO_ER_ERESET: return "ERESET";
+ case CO_ER_EUNREACH: return "EUNREACH";
+ case CO_ER_ENOMEM: return "ENOMEM";
+ case CO_ER_EBADF: return "EBADF";
+ case CO_ER_EFAULT: return "EFAULT";
+ case CO_ER_EINVAL: return "EINVAL";
+ case CO_ER_ENCONN: return "ENCONN";
+ case CO_ER_ENSOCK: return "ENSOCK";
+ case CO_ER_ENOBUFS: return "ENOBUFS";
+ case CO_ER_EPIPE: return "EPIPE";
+ }
+ return NULL;
+}
+
/* returns a human-readable error code for conn->err_code, or NULL if the code
* is unknown.
*/
return 1;
}
-/* fetch a string representation of the error code of a connection */
+/* fetch a string representation of the error code of a connection ({fc,bc}_err_{str,name} */
int smp_fetch_fc_err_str(const struct arg *args, struct sample *smp, const char *kw, void *private)
{
struct connection *conn;
return 0;
}
- err_code_str = conn_err_code_str(conn);
+ /* [7] = "str" or "name" */
+ err_code_str = kw[7] == 's' ? conn_err_code_str(conn) : conn_err_code_name(conn);
if (!err_code_str)
return 0;
*/
static struct sample_fetch_kw_list sample_fetch_keywords = {ILH, {
{ "bc_err", smp_fetch_fc_err, 0, NULL, SMP_T_SINT, SMP_USE_L4SRV },
+ { "bc_err_name", smp_fetch_fc_err_str, 0, NULL, SMP_T_STR, SMP_USE_L4SRV },
{ "bc_err_str", smp_fetch_fc_err_str, 0, NULL, SMP_T_STR, SMP_USE_L4SRV },
{ "bc_glitches", smp_fetch_fc_glitches, 0, NULL, SMP_T_SINT, SMP_USE_L4SRV },
{ "bc_http_major", smp_fetch_fc_http_major, 0, NULL, SMP_T_SINT, SMP_USE_L4SRV },
{ "bc_nb_streams", smp_fetch_fc_nb_streams, 0, NULL, SMP_T_SINT, SMP_USE_L5SRV },
{ "bc_setting_streams_limit", smp_fetch_fc_streams_limit, 0, NULL, SMP_T_SINT, SMP_USE_L5SRV },
{ "fc_err", smp_fetch_fc_err, 0, NULL, SMP_T_SINT, SMP_USE_L4CLI },
+ { "fc_err_name", smp_fetch_fc_err_str, 0, NULL, SMP_T_STR, SMP_USE_L4CLI },
{ "fc_err_str", smp_fetch_fc_err_str, 0, NULL, SMP_T_STR, SMP_USE_L4CLI },
{ "fc_glitches", smp_fetch_fc_glitches, 0, NULL, SMP_T_SINT, SMP_USE_L4CLI },
{ "fc_http_major", smp_fetch_fc_http_major, 0, NULL, SMP_T_SINT, SMP_USE_L4CLI },
projects / thirdparty / haproxy.git / commitdiff
