3.12. Certificate Storage
-------------------------
-HAProxy uses an internal storage mecanism to load and store certificates used
+HAProxy uses an internal storage mechanism to load and store certificates used
in the configuration. This storage can be configured by using a "crt-store"
section. It allows to configure certificate definitions and which files should
be loaded in it. A certificate definition must be written before it is used
as-is and '+E' option will be ignored.
When combined with '+bin' option, it will directly generate raw
binary CBOR payload. Be careful, because it will obviously generate
- non-printable chars, thus it is mainly intented for use with
+ non-printable chars, thus it is mainly intended for use with
set-var-fmt, rings and binary-capable log endpoints.
Example:
A so-called stats-file can be used to preload internal haproxy counters on
process startup with non-null values. Its main purpose is to preserve
-statistics for worker processes accross reloads. Only an excerpt of all the
+statistics for worker processes across reloads. Only an excerpt of all the
exposed haproxy statistics is present in a stats-file as it only makes sense to
preload metric-type values.
The CLI command "dump stats-file" purpose is to generate a stats-file. Format
of the stats-file is internally defined and freely subject to future changes
-and extension. It is designed to be compatible at least accross adjacent
+and extension. It is designed to be compatible at least across adjacent
haproxy stable branch releases, but may require optional extra configuration
when loading a stats-file to a process running on an older version.
#define PEERS_F_RESYNC_LOCAL_FINISHED 0x00000001 /* Learn from local peer finished or no more needed */
#define PEERS_F_RESYNC_REMOTE_FINISHED 0x00000002 /* Learn from remote peer finished or no more needed */
#define PEERS_F_RESYNC_ASSIGN 0x00000004 /* A peer was assigned to learn our lesson */
-/* unsued 0x00000008..0x00080000 */
+/* unused 0x00000008..0x00080000 */
#define PEERS_F_DBG_RESYNC_LOCALTIMEOUT 0x00100000 /* Timeout waiting for a full resync from a local node was experienced at lest once (for debugging purpose) */
#define PEERS_F_DBG_RESYNC_REMOTETIMEOUT 0x00200000 /* Timeout waiting for a full resync from a remote node was experienced at lest once (for debugging purpose) */
#define PEERS_F_DBG_RESYNC_LOCALABORT 0x00400000 /* Session aborted learning from a local node was experienced at lest once (for debugging purpose) */
void stats_dump_file_header(int type, struct buffer *out);
-/* Maximun number of parsed stat column in a header line.
+/* Maximum number of parsed stat column in a header line.
* Directly based on ST_I_PX_MAX, with value doubled to obtain compatibility
* between haproxy adjacent versions.
*/
STATS_PX_CAP_MASK = 0xff
};
-/* Shorcut names for enum stats_domain_px_cap only for declaration convenience */
+/* Shortcut names for enum stats_domain_px_cap only for declaration convenience */
#define STATS_PX_CAP_LFBS (STATS_PX_CAP_MASK)
#define STATS_PX_CAP_LFB_ (STATS_PX_CAP_FE|STATS_PX_CAP_BE|STATS_PX_CAP_LI)
#define STATS_PX_CAP_LF__ (STATS_PX_CAP_FE|STATS_PX_CAP_LI)
#
# The ocsp responder used in all the tests will be an openssl using the
# certificate database in ocsp_update/index.txt. It will listen on port 12345
-# which was specified explicitely in the certificates used in the tests.
+# which was specified explicitly in the certificates used in the tests.
# The synchronization will be based on the logs emitted by the OCSP update task
# directly. When this log is created, we will know that the update was
# effective and the updated OCSP response is loaded in the tree. So any
/* copy the program name */
next_argv[next_argc++] = old_argv[0];
- /* we need to reintroduce /dev/null everytime */
+ /* we need to reintroduce /dev/null every time */
if (old_unixsocket && strcmp(old_unixsocket, "/dev/null") == 0)
x_off = 1;
if (peer->learnstate != PEER_LR_ST_FINISHED)
return;
- /* The learning process is now fnished */
+ /* The learning process is now finished */
if (peer->flags & PEER_F_LEARN_NOTUP2DATE) {
/* Partial resync */
flags |= (peer->local ? PEERS_F_DBG_RESYNC_LOCALPARTIAL : PEERS_F_DBG_RESYNC_REMOTEPARTIAL);
* specified via quic_enc_level <send_list> through their send_frms member. Set
* <old_data> when reemitted duplicated data.
*
-* Returns 1 on success else 0. Note that <send_list> will always be resetted
+* Returns 1 on success else 0. Note that <send_list> will always be reset
* after qc_send() exit.
*/
int qc_send(struct quic_conn *qc, int old_data, struct list *send_list)
* using <st_tree> as prefilled proxy stats columns. If stats-file section is
* unknown, only <domain> will be set to STFILE_DOMAIN_UNSET.
*
- * Returns 0 on sucess. On fatal error, non-zero is returned and parsing shoud
+ * Returns 0 on success. On fatal error, non-zero is returned and parsing should
* be interrupted.
*/
static int parse_header_line(struct ist header, struct eb_root *st_tree,
struct show_stat_ctx *ctx = appctx->svcctx;
int ret;
- /* Frontend and backend sides are ouputted separatedly on stats-file.
+ /* Frontend and backend sides are outputted separately on stats-file.
* As such, use STAT_F_BOUND to restrict proxies looping over frontend
* side first before first stats_dump_stat_to_buffer(). A second
* iteration is conducted for backend side after.
projects / thirdparty / haproxy.git / commitdiff
