Commit 735aa208 authored by David Goulet's avatar David Goulet 🆘
Browse files

dirauth: Add option AuthDirRejectRequestsUnderLoad



This controls the previous feature added that makes dirauth send back a 503
error code on non relay connections if under bandwidth pressure.
Signed-off-by: David Goulet's avatarDavid Goulet <dgoulet@torproject.org>
parent bd4f4cb5
......@@ -2925,6 +2925,13 @@ on the public Tor network.
before it will treat advertised bandwidths as wholly
unreliable. (Default: 500)
[[AuthDirRejectRequestsUnderLoad]] **AuthDirRejectRequestsUnderLoad** **0**|**1**::
If set, the directory authority will start rejecting directory requests
from non relay connections by sending a 503 error code if it is under
bandwidth pressure (reaching the configured limit if any). Relays will
always tried to be answered even if this is on. (Default: 1)
HIDDEN SERVICE OPTIONS
----------------------
......
......@@ -671,6 +671,7 @@ static const config_var_t option_vars_[] = {
OBSOLETE("UseNTorHandshake"),
V(User, STRING, NULL),
OBSOLETE("UserspaceIOCPBuffers"),
V(AuthDirRejectRequestsUnderLoad, BOOL, "1"),
V(AuthDirSharedRandomness, BOOL, "1"),
V(AuthDirTestEd25519LinkKeys, BOOL, "1"),
OBSOLETE("V1AuthoritativeDirectory"),
......
......@@ -1008,6 +1008,13 @@ struct or_options_t {
*/
uint64_t MaxUnparseableDescSizeToLog;
/** Bool (default: 1): Under bandwidth pressure, if set to 1, the authority
* will always answer directory requests from relays but will start sending
* 503 error code for the other connections. If set to 0, all connections
* are considered the same and the authority will try to answer them all
* regardless of bandwidth pressure or not. */
int AuthDirRejectRequestsUnderLoad;
/** Bool (default: 1): Switch for the shared random protocol. Only
* relevant to a directory authority. If off, the authority won't
* participate in the protocol. If on (default), a flag is added to the
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment