You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@trafficcontrol.apache.org by "John Shen (JIRA)" <ji...@apache.org> on 2017/01/12 10:17:01 UTC

[jira] [Comment Edited] (TC-44) TR fd leak observed when new HTTPS DS is added without certificate

    [ https://issues.apache.org/jira/browse/TC-44?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15817674#comment-15817674 ] 

John Shen edited comment on TC-44 at 1/12/17 10:16 AM:
-------------------------------------------------------

RC is that the certificate waiting loop blocks the threads which shall process the HTTP response from TM.

Details: TR polls TM's CrConfig and CrState. They share the same AsyncHttpClient to send requests and receive responses. The requests and responses are async. And the AsyncHttpClient callback onCompleted() is processed by a thread pool to handle responses. When there is an HTTPS delivery service without cert/key configured, the onCompleted() will be blocked at ConfigHandler.processConfig() which is waiting for the availability of key/cert. Thus finally all the threads in the thread pool will be blocked, no thread is available to process the onCompleted() callback. So all the TCP connections will remain CLOSE_WAIT.


was (Author: weifensh):
RC is that the certificate waiting loop blocks the threads which shall process the HTTP response from TM.

Details: TR polls TM's CrConfig and CrState. They share the same AsyncHttpClient to send requests and receive responses. The requests and responses are async. And the AsyncHttpClient callback onCompleted() is processed by a thread pool to handle responses. When there is an HTTPS delivery service without cert/key configured, the onCompleted() will be blocked by the ConfigHandler.processConfig() which is waiting for the availability of key/cert. Thus finally all the threads in the thread pool will be blocked, no thread is available to process the onCompleted() callback. So all the TCP connections will remain CLOSE_WAIT.

> TR fd leak observed when new HTTPS DS is added without certificate
> ------------------------------------------------------------------
>
>                 Key: TC-44
>                 URL: https://issues.apache.org/jira/browse/TC-44
>             Project: Traffic Control
>          Issue Type: Bug
>          Components: Traffic Router
>    Affects Versions: 1.7.0
>            Reporter: John Shen
>            Assignee: John Shen
>             Fix For: 1.9.0
>
>
> In TC 1.7, when a new HTTPS DS (HTTP 302 routing) is added without certificate, there will be fd leak observed on TR. The connections to TM stay in CLOSE-WAIT, which begins to show ~20mins after a new DS without cert/key is added.
> And CrState appears to be blocked in ~20mins as well, i.e. no request from TR to TM to fetch CrState.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)