[
https://issues.apache.org/jira/browse/TS-3554?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14559682#comment-14559682
]
Susan Hinrichs commented on TS-3554:
------------------------------------
I confirmed that this is an issue with the official RHEL 6 openssl package
(1.0.1e release 30.el6_6.4).
I'm going to close this issue now. The fixes associated with this bug should
be back ported for 5.3.1. The remaining issue is outside the ATS code base.
I'll work on getting a case open with Red Hat, but in the meantime anyone
working with Centos 6.x or RHEL6 should build their own openssl package from
the openssl.org source if they are running into this issue (loading large
number's of certificates).
> ATS memory leak reloading ssl_multicert.config with many ssl cert configs
> -------------------------------------------------------------------------
>
> Key: TS-3554
> URL: https://issues.apache.org/jira/browse/TS-3554
> Project: Traffic Server
> Issue Type: Bug
> Components: Configuration, Core, SSL
> Reporter: Steven Feltner
> Assignee: Susan Hinrichs
> Fix For: 6.0.0
>
> Attachments: limit_session_cache_alloc.diff, ts-3554-53-2.diff,
> ts-3554-53-3.diff, ts-3554-53.diff
>
>
> ATS will consume all available memory on a server with 128GB of RAM.
> @shinrich suspects it may be due to CertLookup table not being freed on a
> config reload.
> Our current process:
> - New cert comes in
> - ssl_multicert.config and remap.config updated
> - traffic_line -x
> This reload could occur as often as every 3 mins with 5000+ certs configured.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
