[SERVER-59876] Large delays in returning from `libcrypto.so` while establishing egress connections Created: 10/Sep/21  Updated: 29/Oct/23  Resolved: 16/Sep/21

Status: Closed
Project: Core Server
Component/s: Internal Code
Affects Version/s: 4.2.8, 4.2.15
Fix Version/s: 4.2.17, 4.4.10, 5.0.4, 5.1.0-rc0

Type: Bug Priority: Major - P3
Reporter: Amirsaman Memaripour Assignee: Mark Benvenuto
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Backports
Related
Backwards Compatibility: Fully Compatible
Operating System: Linux
Backport Requested:
v5.0, v4.4, v4.2, v4.0
Sprint: Security 2021-09-20
Participants:
Case:

 Description   

Establishing egress connections on mongos servers may be delayed by seconds due to large delays in returning from libcrypto.so. The incidents are reported on r4.2.8 and r4.2.15, running mongos on RHEL 7 and using libcrypto.so.1.0.2k.



 Comments   
Comment by Githook User [ 21/Sep/21 ]

Author:

{'name': 'Mark Benvenuto', 'email': 'mark.benvenuto@mongodb.com', 'username': 'markbenvenuto'}

Message: SERVER-59876 Ensure hostname is progated for internal sasl auth

(cherry picked from commit f9383c046f2895f6622fe48f063ab3c174afcbb6)
Branch: v5.0
https://github.com/mongodb/mongo/commit/8dec8abc0d78221d43a2553d9d3dd72110bb4768

Comment by Githook User [ 21/Sep/21 ]

Author:

{'name': 'Mark Benvenuto', 'email': 'mark.benvenuto@mongodb.com', 'username': 'markbenvenuto'}

Message: SERVER-59876 Ensure hostname is progated for internal sasl auth

(cherry picked from commit f9383c046f2895f6622fe48f063ab3c174afcbb6)
Branch: v4.4
https://github.com/mongodb/mongo/commit/1d7294991ecfe89b3149ac30686a28cbff938fb8

Comment by Githook User [ 16/Sep/21 ]

Author:

{'name': 'Mark Benvenuto', 'email': 'mark.benvenuto@mongodb.com', 'username': 'markbenvenuto'}

Message: SERVER-59876 Ensure hostname is progated for internal sasl auth

(cherry picked from commit f9383c046f2895f6622fe48f063ab3c174afcbb6)
Branch: v4.2
https://github.com/mongodb/mongo/commit/f912a0c89d77e59eaba31c4ad86d0d0428e0b4da

Comment by Githook User [ 16/Sep/21 ]

Author:

{'name': 'Mark Benvenuto', 'email': 'mark.benvenuto@mongodb.com', 'username': 'markbenvenuto'}

Message: SERVER-59876 Ensure hostname is progated for internal sasl auth
Branch: master
https://github.com/mongodb/mongo/commit/f9383c046f2895f6622fe48f063ab3c174afcbb6

Comment by Mark Benvenuto [ 13/Sep/21 ]

SCRAM-SHA-* is expensive to compute, by design, which is why Mongo clients typically use a cache to mitigate some of the performance hit. Unfortunately, the client cache is not used for server -> server communication due to a bug in which the target host and port is not passed around to the cache.

Generated at Thu Feb 08 05:48:23 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.