flink-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF GitHub Bot (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (FLINK-9878) IO worker threads BLOCKED on SSL Session Cache while CMS full gc
Date Mon, 13 Aug 2018 17:21:00 GMT

    [ https://issues.apache.org/jira/browse/FLINK-9878?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16578646#comment-16578646
] 

ASF GitHub Bot commented on FLINK-9878:
---------------------------------------

NicoK commented on a change in pull request #6355: [FLINK-9878][network][ssl] add more low-level
ssl options
URL: https://github.com/apache/flink/pull/6355#discussion_r209690587
 
 

 ##########
 File path: flink-runtime/src/main/java/org/apache/flink/runtime/io/network/netty/NettyClient.java
 ##########
 @@ -175,7 +183,6 @@ ChannelFuture connect(final InetSocketAddress serverSocketAddress) {
 		bootstrap.handler(new ChannelInitializer<SocketChannel>() {
 			@Override
 			public void initChannel(SocketChannel channel) throws Exception {
-
 				// SSL handler should be added first in the pipeline
 				if (clientSSLContext != null) {
 
 Review comment:
   if SSL is disabled, for example

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


> IO worker threads BLOCKED on SSL Session Cache while CMS full gc
> ----------------------------------------------------------------
>
>                 Key: FLINK-9878
>                 URL: https://issues.apache.org/jira/browse/FLINK-9878
>             Project: Flink
>          Issue Type: Bug
>          Components: Network
>    Affects Versions: 1.5.0, 1.5.1, 1.6.0
>            Reporter: Nico Kruber
>            Assignee: Nico Kruber
>            Priority: Major
>              Labels: pull-request-available
>             Fix For: 1.5.3, 1.6.1, 1.7.0
>
>
> According to https://github.com/netty/netty/issues/832, there is a JDK issue during garbage
collection when the SSL session cache is not limited. We should allow the user to configure
this and further (advanced) SSL parameters for fine-tuning to fix this and similar issues.
In particular, the following parameters should be configurable:
> - SSL session cache size
> - SSL session timeout
> - SSL handshake timeout
> - SSL close notify flush timeout



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message