context_storage.cc
Go to the documentation of this file.
1 /*
2  * Copyright (C) 1996-2023 The Squid Software Foundation and contributors
3  *
4  * Squid software is distributed under GPLv2+ license and includes
5  * contributions from numerous individuals and organizations.
6  * Please see the COPYING and CONTRIBUTORS files for details.
7  */
8 
9 #include "squid.h"
10 #include "base/PackableStream.h"
11 #include "mgr/Registration.h"
12 #include "ssl/context_storage.h"
13 #include "Store.h"
14 
15 #include <limits>
16 #if USE_OPENSSL
17 #include "compat/openssl.h"
18 #if HAVE_OPENSSL_SSL_H
19 #include <openssl/ssl.h>
20 #endif
21 #endif
22 
23 Ssl::CertificateStorageAction::CertificateStorageAction(const Mgr::Command::Pointer &aCmd)
24  : Mgr::Action(aCmd)
25 {}
26 
27 Ssl::CertificateStorageAction::Pointer
28 Ssl::CertificateStorageAction::Create(const Mgr::Command::Pointer &aCmd)
29 {
30  return new CertificateStorageAction(aCmd);
31 }
32 
33 void Ssl::CertificateStorageAction::dump (StoreEntry *sentry)
34 {
35  PackableStream stream(*sentry);
36  const char delimiter = '\t';
37  const char endString = '\n';
38  // Page title.
39  stream << "Cached ssl certificates statistic.\n";
40  // Title of statistic table.
41  stream << "Port" << delimiter << "Max mem(KB)" << delimiter << "Cert number" << delimiter << "KB/cert" << delimiter << "Mem used(KB)" << delimiter << "Mem free(KB)" << endString;
42 
43  // Add info for each port.
44  for (std::map<Ip::Address, LocalContextStorage *>::iterator i = TheGlobalContextStorage.storage.begin(); i != TheGlobalContextStorage.storage.end(); ++i) {
45  stream << i->first << delimiter;
46  LocalContextStorage & ssl_store_policy(*(i->second));
47  const auto memoryPerEntry = ssl_store_policy.entries() ?
48  ssl_store_policy.memoryUsed() / ssl_store_policy.entries() : 0;
49  stream << ssl_store_policy.memLimit() / 1024 << delimiter;
50  stream << ssl_store_policy.entries() << delimiter;
51  stream << memoryPerEntry / 1024 << delimiter;
52  stream << ssl_store_policy.memoryUsed() / 1024 << delimiter;
53  stream << ssl_store_policy.freeMem() / 1024 << endString;
54  }
55  stream << endString;
56  stream.flush();
57 }
58 
60 
61 Ssl::GlobalContextStorage::GlobalContextStorage()
62  : reconfiguring(true)
63 {
64  RegisterAction("cached_ssl_cert", "Statistic of cached generated ssl certificates", &CertificateStorageAction::Create, 0, 1);
65 }
66 
67 Ssl::GlobalContextStorage::~GlobalContextStorage()
68 {
69  for (std::map<Ip::Address, LocalContextStorage *>::iterator i = storage.begin(); i != storage.end(); ++i) {
70  delete i->second;
71  }
72 }
73 
74 void Ssl::GlobalContextStorage::addLocalStorage(Ip::Address const & address, size_t size_of_store)
75 {
76  assert(reconfiguring);
77  configureStorage.insert(std::pair<Ip::Address, size_t>(address, size_of_store));
78 }
79 
80 Ssl::LocalContextStorage *Ssl::GlobalContextStorage::getLocalStorage(Ip::Address const & address)
81 {
82  reconfigureFinish();
83  std::map<Ip::Address, LocalContextStorage *>::iterator i = storage.find(address);
84 
85  if (i == storage.end())
86  return nullptr;
87  else
88  return i->second;
89 }
90 
91 void Ssl::GlobalContextStorage::reconfigureStart()
92 {
93  configureStorage.clear();
94  reconfiguring = true;
95 }
96 
97 void Ssl::GlobalContextStorage::reconfigureFinish()
98 {
99  if (reconfiguring) {
100  reconfiguring = false;
101 
102  // remove or change old local storages.
103  for (std::map<Ip::Address, LocalContextStorage *>::iterator i = storage.begin(); i != storage.end();) {
104  std::map<Ip::Address, size_t>::iterator conf_i = configureStorage.find(i->first);
105  if (conf_i == configureStorage.end() || conf_i->second <= 0) {
106  delete i->second;
107  storage.erase(i++);
108  } else {
109  i->second->setMemLimit(conf_i->second);
110  ++i;
111  }
112  }
113 
114  // add new local storages.
115  for (std::map<Ip::Address, size_t>::iterator conf_i = configureStorage.begin(); conf_i != configureStorage.end(); ++conf_i ) {
116  if (storage.find(conf_i->first) == storage.end() && conf_i->second > 0) {
117  storage.insert(std::pair<Ip::Address, LocalContextStorage *>(conf_i->first, new LocalContextStorage(conf_i->second)));
118  }
119  }
120  }
121 }
122 
123 Ssl::GlobalContextStorage Ssl::TheGlobalContextStorage;
124 
ClpMap::freeMem
uint64_t freeMem() const
The free space of the map.
Definition: ClpMap.h:103
ClpMap::memLimit
uint64_t memLimit() const
The memory capacity for the map.
Definition: ClpMap.h:100
context_storage.h
delimiter
static const char * delimiter
Definition: ldap_backend.cc:65
Ssl::CertificateStorageAction::dump
void dump(StoreEntry *sentry) override
Definition: context_storage.cc:33
Ssl::CertificateStorageAction::CertificateStorageAction
CertificateStorageAction(const Mgr::Command::Pointer &cmd)
Definition: context_storage.cc:23
Ssl::GlobalContextStorage::getLocalStorage
LocalContextStorage * getLocalStorage(Ip::Address const &address)
Return the local storage for the given listening address/port.
Definition: context_storage.cc:80
ClpMap
Definition: ClpMap.h:40
reconfiguring
int reconfiguring
assert
#define assert(EX)
Definition: assert.h:17
ClpMap::entries
size_t entries() const
The number of currently stored entries, including expired ones.
Definition: ClpMap.h:109
Ssl::GlobalContextStorage::reconfigureFinish
void reconfigureFinish()
Called by getLocalStorage method.
Definition: context_storage.cc:97
Ssl::TheGlobalContextStorage
GlobalContextStorage TheGlobalContextStorage
Global cache for store all SSL server certificates.
Definition: context_storage.cc:123
Ssl::GlobalContextStorage::reconfigureStart
void reconfigureStart()
When reconfigring should be called this method.
Definition: context_storage.cc:91
Ssl::CertificateStorageAction::Create
static Pointer Create(const Mgr::Command::Pointer &cmd)
Definition: context_storage.cc:28
Mgr::RegisterAction
void RegisterAction(char const *action, char const *desc, OBJH *handler, Protected, Atomic, Format)
Definition: Registration.cc:54
Ssl::GlobalContextStorage::addLocalStorage
void addLocalStorage(Ip::Address const &address, size_t size_of_store)
Create new SSL context storage for the local listening address/port.
Definition: context_storage.cc:74
ClpMap::memoryUsed
uint64_t memoryUsed() const
The current (approximate) memory usage of the map.
Definition: ClpMap.h:106
Ssl::GlobalContextStorage::storage
std::map< Ip::Address, LocalContextStorage * > storage
Map for storing all local ip address and their local storages.
Definition: context_storage.h:73
Ssl::GlobalContextStorage
Class for storing/manipulating LocalContextStorage per local listening address/port.
Definition: context_storage.h:54
Mgr
Cache Manager API.
Definition: Action.h:20

 

Introduction

Documentation

Support

Miscellaneous