Details
-
Bug
-
Status: Closed (View Workflow)
-
Major
-
Resolution: Incomplete
-
10.5.18
-
RockyLinux 9.4, MariaDB 10.5.18, Galera 26.4.13
Description
We are seeing random communication link failure issues during heavy traffic with SSL enabled users in Mariadb 10.5.18 installed on rocky linux 9.4.
OpenSSL version: 3.0.7 (default for rocky 9.4)
When disabling the ssl on those users, link failure issues are not seen. We recently migrated to rockylinux 9.4 from centos 7 which had open ssl 1.0 and there weren't any link failures issues in centos.
We even tried custom openssl 3.3.2 installation on rocky linux updated mariadb service file to point to that openssl version to see if it fixes the issue. Still we are seeing those link failures too often.
Is there any config on mariadb that we are missing for ssl or any way to resolve this issue?
Attachments
Activity
Yes we are using galera-4 with mariadb 10.5.18.
We are using mariadb from
vim /etc/yum.repos.d/mariadb.repo
[mariadb]
name = MariaDB
baseurl = https://archive.mariadb.org//mariadb-10.5.18/yum/centos7-amd64/
gpgkey=https://yum.mariadb.org/RPM-GPG-KEY-MariaDB
gpgcheck=1
Sorry, no update yet. There's too little information to understand what's happening or even to try to repeat it.
What side causes the disconnect — the server or a client? One can see it with wireshark or tcpdump, for example.
Is it caused by the OpenSSL library? You said you tried 3.3.2, perhaps you could try whatever version you had on CentOS 7 (1.0.2k or what was it?) — not as a solution, but to be able to pinpoint the culprit
You made it sound as if the actual SQL load doesn't matter, for simplicity let's assume it is the case. But if all else fails, perhaps, we'll need to look at the actual content of your heavy traffic.
It would be helpful to be able to know if disconnects happen without Galera too. But I don't except you'll be able to change your setup to test that. So, just mentioning this for completeness.
Are you using Galera?
Where did you install MariaDB from?