Joseph Wu created MESOS-5691:
--------------------------------
Summary: SSL downgrade support will leak sockets in CLOSE_WAIT
status
Key: MESOS-5691
URL: https://issues.apache.org/jira/browse/MESOS-5691
Project: Mesos
Issue Type: Bug
Components: libprocess
Affects Versions: 0.24.0
Reporter: Joseph Wu
Assignee: Joseph Wu
Priority: Blocker
Fix For: 1.0.0
Repro steps:
1) Start a master:
{code}
bin/mesos-master.sh --work_dir=/tmp/master
{code}
2) Start an agent with SSL and downgrade enabled:
{code}
# Taken from http://mesos.apache.org/documentation/latest/ssl/
openssl genrsa -des3 -f4 -passout pass:some_password -out key.pem 4096
openssl req -new -x509 -passin pass:some_password -days 365 -key key.pem -out
cert.pem
SSL_KEY_FILE=key.pem SSL_CERT_FILE=cert.pem SSL_ENABLED=true
SSL_SUPPORT_DOWNGRADE=true sudo -E bin/mesos-agent.sh --master=localhost:5050
--work_dir=/tmp/agent
{code}
3) Start a framework that launches lots of executors, one after another:
{code}
sudo src/balloon-framework --master=localhost:5050 --task_memory=64mb
--task_memory_usage_limit=256mb --long_running
{code}
4) Check FDs, repeatedly
{code}
sudo lsof -i | grep mesos | grep CLOSE_WAIT | wc -l
{code}
The number of sockets in {{CLOSE_WAIT}} will increase linearly with the number
of launched executors.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
