Uploaded image for project: 'LDAP'
  1. LDAP
  2. LDAP-6

Thread leaking when LDAP SSL is configured and cacerts does not trust the certificate

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • Major
    • None
    • 8.3
    • Authenticator
    • None
    • Tomcat 6/7, XWiki 3.4/3.5, Ubuntu 10.04

    Description

      When LDAP authentication is configured in xwiki.cfg, and it use SSL protocol, if the root certificates needed to trust the LDAP server SSL key is not properly setup in cacerts key store,
      many thread are run and leak memory until an OOM issue is reach, behing unable to create new threads.

      This is visible on the memory consumption of the server, not the JVM. In JVM profiling, an unusual high number of thread creation is shown and the eden space grows constantly between GC, even on an idle server.

      Attachments

        Issue Links

          is related to

          Improvement - An improvement or enhancement to an existing feature or task. LDAP-18 Rewrite LDAP authenticator based on Apache LDAP API

          • Major - Major loss of function.
          • In Progress

          Activity

            People

              Unassigned Unassigned
              softec Denis Gervalle
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated: