> So to confirm, your new module is basically files module, but it does
> NOT cache anything in directory, but re-read the files on disk for
> every request, is that correct?

Roughly correct.  No caching, and reads on disk for every request. We rely on 
the block-buffer cache to make it go blisteringly quick.

The "rough" part is that it isn't a replacement for the "files" module as such. 
 Instead, it is a module you list in the config before "files". Our module then 
sets a value for use *by* the "files" module. The "files" module is still used 
exactly as is.

I think Alan summarised it best as being similar to this:

   update request {
      My-Magic-Attr = "%{sql: SELECT .. from ..}"

Then in the "users" file the value of "My-Magic-Attr" can be used to select 
particular DEFAULT entries to return attributes.

What is different about our module is that "update request" above would look 
something like this:

   update request {
      My-Magic-Attr = "%{read-line-from-file: /blah/%{Username}}"

But we wanted to avoid SQL and move to a file-based system as we had reached 
the end of our tether on SQL optimisation, budget, debugging, etc.

> Using unlang, we then create a failsafe scenario, so if that a
> concurrent request comes that exceed the number of max sql thread, it
> would automatically accepted (i.e. basically Auth-Type=accept), but
> with a low timeout (e.g. 1 hour). That way the user can connect, but
> it'd reconnect and reauthenticate later when the system is (hopefuly)
> not-so-busy.

This is very good idea.  Note that our problem was more about stability than 
raw performance. We still don't really know *why* we had the stability issues 
and are now relaxing with a beer because it's all gone away now :)

Lazy? Yes.  Happy?  Very :)

> Interesting. I wonder if we can hack a detail reader to behave similar,
> e.g.:
> - send "start transaction"
> - read lines from detail file
> - every 10 seconds or before deleting the detail file, send a "commit"

I suspect this would give all the benefits we gained by writing the events to a 
file and batch loading. Simpler too.

List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to