One more attempt: stuck processes
murch at andrew.cmu.edu
Sat Nov 17 11:21:38 EST 2007
Sebastian Hagedorn wrote:
> -- Ken Murchison <murch at andrew.cmu.edu> is rumored to have mumbled on
> 16. November 2007 15:54:50 -0500 regarding Re: One more attempt: stuck
>> That's exactly what Gary is seeing.
> Right. Apparently stripped binaries aren't any good for straces.
>> Its blocking in SSL_accept().
>> Apparently the client connects to port 995, and then either sends
>> nothing, or goes away and leaves the socket open.
Here's a patch that seems to fix the problem. I did some basic testing
(Linux only) to make sure that it doesn't break anything else, but its
always possible that it has some unforseen side effects. Keep an eye on
it and let me know if you see anything unusual.
--- prot.c.~1.93.~ 2007-11-17 10:02:49.000000000 -0500
+++ prot.c 2007-11-17 11:21:05.000000000 -0500
@@ -58,6 +58,7 @@
@@ -214,10 +215,20 @@
int prot_settimeout(struct protstream *s, int timeout)
+ struct timeval tv;
s->read_timeout = timeout;
s->timeout_mark = time(NULL) + timeout;
+ /* Set a read timeout on the socket itself. This primarily prevents
+ * OpenSSL calls such as SSL_accept() from blocking indefinitely.
+ tv.tv_sec = timeout;
+ tv.tv_usec = 0;
+ setsockopt(0, SOL_SOCKET, SO_RCVTIMEO, &tv, sizeof(struct timeval));
Project Cyrus Developer/Maintainer
Carnegie Mellon University
More information about the Info-cyrus