Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Need to be able to set timeouts / limits to handle misbehaving clients #70

Open
miquels opened this issue Aug 20, 2018 · 3 comments
Open

Need to be able to set timeouts / limits to handle misbehaving clients #70

miquels opened this issue Aug 20, 2018 · 3 comments
Labels
enhancement New feature or request

Comments

@miquels
Copy link

miquels commented Aug 20, 2018

If tower-web is exposed to the internet, it needs to be robust when handling misbehaving clients. I'm thinking of

  • request header read timeout: max time it can take for the client to send all headers
  • request body timeout
  • request reply timeout (if a client simply doesn't read the reply)
  • there should be a way for a request handler to reset/restart the timeouts, e.g. to facilitate large bodies or large replies.
  • idle timeout for keepalive sessions
  • max number of simultaneous requests per client (source ip address)
  • max number of requests/sec per client

The last two could probably be implemented as middleware if there was a way to get the client's IP address.

It could be that this should be implemented in hyper instead of in tower, if so tell me and I will open an issue with hyper.
@shepmaster shepmaster added the enhancement New feature or request label Aug 22, 2018
@shepmaster shepmaster changed the title timeouts / limits Need to be able to set timeouts / limits to handle misbehaving clients Aug 22, 2018
@shepmaster
Copy link
Collaborator

See also #10

@carllerche
Copy link
Owner

  • request header read timeout: max time it can take for the client to send all headers
  • idle timeout for keepalive sessions

These would need to go in hyper. I would check to see if it is already possible.

  • request body timeout
  • request reply timeout (if a client simply doesn't read the reply)
  • max number of simultaneous requests per client (source ip address)
  • max number of requests/sec per client

Implemented as a middleware. It can start in this repo and eventually be moved into tower-http.

  • if there was a way to get the client's IP address

Can be discussed in #71

  • there should be a way for a request handler to reset/restart the timeouts, e.g. to facilitate large bodies or large replies.

You will have to elaborate more on this one.

If you want to take a stab at any of these items, I can help with some pointers.

@miquels
Copy link
Author

miquels commented Aug 28, 2018
edited
Loading

there should be a way for a request handler to reset/restart the timeouts, e.g. to facilitate large bodies or large replies.

You will have to elaborate more on this one.

For example, when you set a request body timeout of 30 seconds, and after the timeout it turns out that 30 MB of body payload already has been received - in that case, yes, 30 seconds have passed, but progress is made, so you want to ignore this timeout and set a new one.

Either this, or 2 seperate types of timeout: absolute, with a hard limit (N minutes no matter what) and relative, one that fires if no progress is made (connection stalled) for a certain period of time.

If it is possible to implement this as middleware, even better, because that would allow more complicated strategies as well (say when max. number of clients is reached, close the oldest sessions that are idling in keepalive).

For completeness, a list of nginx's timeouts.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@carllerche @shepmaster @miquels