GenStage - Unexpected :ssl_closed message

itsachen · October 27, 2017, 11:39pm

Hi!

I have an Elixir application that is ingesting messages from a queue (AWS SQS). It is based off this design that uses GenStage.

The design is as follows:

GenStage Producer that fetches messages from the queue
GenStage Consumer that subscribes to Producer, receives the queue message and deletes it from the queue

The application runs smoothly with the exception of a failure that occurs 1-2 times every hour.
It seems that the GenStage Consumer is being sent the following message (which is not accounted for and hence fails):
{:sslsocket, {:gen_tcp, #Port<0.XXXX>, :tls_connection, :undefined}, #PID<0.XXXX.0>}}

I’m racking my brain trying to understand how this might be occurring. There are no explicit messages being sent to the consumer in my application code. The consumers are relatively simple as well - they’re simply using ExAws to make requests to AWS through their API. I don’t make any calls to :gen_tcp at any point.

I’m curious if anybody has encountered something similar or had any ideas about what might be going on.

For context:

Elixir Version:
1.5

Dependencies:

configparser_ex
credo
dialyxir
distillery
ex_aws
excoveralls
gen_stage
hackney
httpoison
mock
poison
sentry
sshex
sweet_xml
timex

josevalim · October 28, 2017, 12:34am

It may be a library that you invoke from the consumer that is sending the consumer processes unwanted messages. For example, maybe you are calling ExAWS.foo(...) and that is storing the consumer process which eventually leaks a message. Not saying it is ExAWS though, just an example.

josevalim · October 28, 2017, 12:36am

One idea is to match on the message and use Port.info on the port and Process.info on the pid and then log the results so you can read it later on. That should give you more hints about which process is leaking them.

itsachen · October 30, 2017, 6:51pm

That makes sense. Thanks for the leads!

I’ll continue investigating and will update with any progress made.

itsachen · November 7, 2017, 12:05am

Update on the investigation - it looks like calling Port.info and Process.info on the port and pid result in nil. It looks like the processes have died by the time the message is handled…

minhajuddin · November 7, 2017, 3:28am

What is your erlang version? Erlang 19 has an issue with broken ssl. I’ve run into a similar issue which was fixed when I used the proper tls version :‘tlsv1.2’ (https://github.com/edgurgel/httpoison#note-about-broken-ssl-in-erlang-19)

itsachen · November 7, 2017, 7:02pm

Unfortunately I’m on Erlang 20, I don’t know if that issue applies…

alex88 · January 18, 2019, 4:46am

Did you find any solution to this issue? I’ve just encountered the same issue in a Genserver that consumes SQS messages using only ExAws.request()

andersonmcook · February 6, 2019, 7:54pm

I’m in the same boat, as well, with SQS.

josevalim · February 6, 2019, 8:54pm

I believe the reason was the one mentioned above. Something is doing a request using SSL, then the connection is closed, and that leaks the ssl_closed message. The best option is to track whatever is leaking the message and fix the leakage but the leakage in itself shouldn’t be harmful.

eurico · February 7, 2019, 12:56am

We noticed this behavior appearing after upgrading to OTP 21.2 (also using ExAWS with SQS).
Upgrading to 21.2.3+ reduced the occurances but didn’t fix it completely yet.

Some related pointers:

github.com/benoitc/hackney

unhandled `{ssl_closed, _}` message when using `async`

opened 02:22PM - 15 Jan 18 UTC

paulswartz

bug working on it

I see the following message in my Elixir logs periodically: ``` Unexpected mes…sage: {:ssl_closed, {:sslsocket, {:gen_tcp, #Port<0.9056>, :tls_connection, :undefined}, #PID<0.10027.10>}} ``` That looks like a close message from the SSL socket, which I'd expect hackney to manage the same as a close of the TCP connection (which are handled properly). I'm using the `async` option to stream the response data as it comes in.

antoniobg · June 11, 2019, 2:23pm

Getting the same issue using ExAWS and SQS. We just migrated our app from Heroku (Elixir 1.7.4 OTP 20.3) to AWS, upgrading at the same time the OTP version to 21.3 keeping the same Elixir version. We never saw this issue on Heroku.

outlog · June 11, 2019, 2:38pm

21.3 also had a ssl bug… please try with latest patch release… eg 21.3.8.3

you didn’t see it on heroku as you were using OTP 20.3

antoniobg · June 19, 2019, 3:24pm

Thank you for the answer @outlog. We have upgraded OTP to 21.3.8.3 but we’re still seeing the issue.

outlog · June 19, 2019, 3:49pm

@antoniobg seems like it’s tracked here: https://github.com/benoitc/hackney/issues/464 - and that there is a current workaround of implementing
def handle_info({:ssl_closed, _msg}, state), do: {:noreply, state}

you could also consider using a different http client say HTTPotion:

https://hexdocs.pm/ex_aws/ExAws.Request.HttpClient.html

amarandon · May 4, 2020, 4:29pm

@adamkittelson @chulkilee

I’ve added a catch-all handle_info to my GenServer which calls HTTPoison functions, as suggested in the previous message, but I’m still getting the error. Did you put this in your GenServer or somewhere else?

I’m not sure if I did it properly though because I don’t really understand what’s going on. What is a “message leak”?

chulkilee · May 11, 2020, 8:00am

@amarandon could you make sure you added handle_info callback where you call those libraries (and thus start a process from it)?

Process A calls HTTP lib func (e.g. HTTPoison or Tesla) synchronously
HTTP lib func behind the scene starts a process B to handle HTTP connection
When HTTP request is completed… HTTP lib func returns the result (in process A)

The problem is, for some reason process B (which should be hidden from process A point of view) sends those messages to process A - so it’s “leaking”.