[FIXED] Connz would "block" for TLS clients still in TLS handshake #604

kozlovic · 2017-11-09T16:51:13Z

If server requires TLS and clients are connecting, and a Connz
request is made while clients are still in TLS Handshake, the
call to tls.Conn.ConnectionState() would block for the duration
of the handshake. This would cause the overall http request to
take too long.
We will now not try to gather TLSVersion and TLSCipher from a
client that is still in TLS handshake.

Resolves #600

If server requires TLS and clients are connecting, and a Connz request is made while clients are still in TLS Handshake, the call to tls.Conn.ConnectionState() would block for the duration of the handshake. This would cause the overall http request to take too long. We will now not try to gather TLSVersion and TLSCipher from a client that is still in TLS handshake. Resolves #600

derekcollison · 2017-11-09T16:57:59Z

LGTM

coveralls · 2017-11-09T16:58:29Z

Coverage increased (+0.07%) to 91.981% when pulling 6fad293 on fix_connz_tls_handshake into 92c4481 on master.

kozlovic mentioned this pull request Nov 9, 2017

Monitor /connz endpoint returns empty reply #600

Closed

2 tasks

kozlovic merged commit cde2aa6 into master Nov 17, 2017

kozlovic deleted the fix_connz_tls_handshake branch November 17, 2017 19:32

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[FIXED] Connz would "block" for TLS clients still in TLS handshake #604

[FIXED] Connz would "block" for TLS clients still in TLS handshake #604

kozlovic commented Nov 9, 2017

derekcollison commented Nov 9, 2017

coveralls commented Nov 9, 2017

[FIXED] Connz would "block" for TLS clients still in TLS handshake #604

[FIXED] Connz would "block" for TLS clients still in TLS handshake #604

Conversation

kozlovic commented Nov 9, 2017

derekcollison commented Nov 9, 2017

coveralls commented Nov 9, 2017