Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(server): add h1 idle_timeout #3743

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

feat(server): add h1 idle_timeout #3743

wants to merge 1 commit into from

Conversation

finnbear
Copy link

@finnbear finnbear commented Aug 24, 2024
edited
Loading

Motivation

Older browsers sometimes open 6 or more H1 connections and keep them alive and idle after resources are loaded, costing server resources and distracting from DoS attackers. In my specific case, DoS mitigation required limiting TCP connections per IP address, but limits had to be high to account for multiple legitimate H1 browsers on the same IP address.

Related: #1628
Related: #2355

Changes

Testing

  • Fixed multiple pre-existing and broken, but relevant, tests
  • Added a test with idle timeout
  • Added a test without idle timeout (improves coverage)
  • Tested in my app
# Cargo.toml

[patch.crates-io]
hyper = { git = "https://github.com/finnbear/hyper", branch = "idle_timeout" }
hyper-util = { git = "https://github.com/finnbear/hyper-util", branch = "idle_timeout" }

Future work

@finnbear finnbear marked this pull request as ready for review August 24, 2024 07:19
@finnbear finnbear marked this pull request as draft August 24, 2024 18:45
@finnbear finnbear marked this pull request as ready for review August 24, 2024 19:29
@finnbear finnbear mentioned this pull request Aug 24, 2024
Draft
1 task
@finnbear finnbear force-pushed the idle_timeout branch 2 times, most recently from 4362e38 to d76e8d8 Compare August 26, 2024 20:27
@seanmonstar seanmonstar requested a review from sfackler August 28, 2024 11:04
@MarkusSintonen
Copy link

@sfackler / @seanmonstar is there a possibility on getting this PR reviewed? I am also interested in getting H1 idle timeouts available :)

@finnbear
Copy link
Author

finnbear commented Oct 5, 2024
edited
Loading

I am also interested in getting H1 idle timeouts available :)

If you want, you can use the TOML snippet in my PR description to avoid needing to wait for review :)

Dav1dde added a commit to getsentry/relay that referenced this pull request Nov 14, 2024
@Dav1dde
ref(server): make idle time of a http connection configurable (#4248)
013eca3 
With the idle time configurable we can prevent a pile up of open
connections which never see any activity.

See also on the hyper issue tracker:
```
hyperium/hyper#3743
hyperium/hyper#1628
hyperium/hyper#2355
hyperium/hyper#2827
```
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sfackler sfackler Awaiting requested review from sfackler

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@finnbear @MarkusSintonen