[squid-users] WARNING: All 32/32 ssl_crtd processes are busy - where next?
Max Allan
max.allan at surevine.com
Thu May 12 10:46:48 UTC 2022
Hi,
I have squid setup to log all requests for security reasons.
When doing an npm install, npm sometimes gets a connection reset error
and fails.
In the cache log, I can see many messages like :
2022/05/12 09:20:00 kid1| helperOpenServers: Starting 1/32 'ssl_crtd' processes
2022/05/12 09:20:00 kid1| WARNING: All 32/32 ssl_crtd processes are busy.
2022/05/12 09:20:00 kid1| WARNING: 32 pending requests queued
2022/05/12 09:20:00 kid1| WARNING: Consider increasing the number of
ssl_crtd processes in your config file.
2022/05/12 09:20:00 kid1| Queue overload, rejecting
2022/05/12 09:20:00 kid1| Queue overload, rejecting
(with 100s of queue overloads)
BUT http://www.squid-cache.org/Versions/v3/3.5/cfgman/sslcrtd_children.html
says the maximum safe value is 32. Later versions don't allow values over 32.
(I'm on 3.5)
So, where do I go from here??
What is the "unsafe" worst case? Packet loss, high server load, squid
crashing out, etc..?
I did increase it to 64 and the idle to 5 so far haven't seen one of
the failures from npm, but my cache log still shows :
2022/05/12 10:14:30 kid1| helperOpenServers: Starting 5/64 'ssl_crtd' processes
2022/05/12 10:14:30 kid1| Starting new ssl_crtd helpers...
2022/05/12 10:14:30 kid1| helperOpenServers: Starting 4/64 'ssl_crtd' processes
2022/05/12 10:14:44 kid1| WARNING: All 64/64 ssl_crtd processes are busy.
2022/05/12 10:14:44 kid1| WARNING: 64 pending requests queued
2022/05/12 10:14:44 kid1| WARNING: Consider increasing the number of
ssl_crtd processes in your config file.
2022/05/12 10:14:44 kid1| Queue overload, rejecting
2022/05/12 10:14:44 kid1| Queue overload, rejecting
Which queue do I increase to prevent the overload? Squid is configured
without any auth, mostly ACL and ssl setup.
Thanks
More information about the squid-users
mailing list