Caddy hangs when adding new config via API (after hundreds of successful uses over years) #6844
Comments
|
@mholt Are other customers using caddy's API with hundreds of domains or more? Is there a particular set of circumstances that might be causing a lock? Is there a more preferred way to dynamically add sites - such as editing the config through other means and sending a |
|
Sorry AJ, been a busy weekend and I'm still catching up on the latest issues. I have to look into this some more, but, real quick: yes, there are some servers using the API with tens of thousands of domains. The only way to change the config is via the API (the CLI also uses the API). If something is hanging, it's quite possible there's faulty locking logic, but it could be a lot of things really. If it's faulty locking, then a full goroutine stack dump (see https://caddyserver.com/docs/profiling) would reveal this by showing a relevant stack trace in the In terms of a quick resolution, I'd start looking into things there. I will try to get around to it soon but ECH is keeping me busy at the moment... |
Tested with v2.7.5, v2.8.4, and v2.9.1.
I'm using Caddy as a reverse proxy for ssh and https to hundreds of LXCs and VMs.
My
~/.config/caddy/autosave.jsonis approaching 200kb.Most of the configs are very similar in nature - just the domain name and instance IP are changed in various places. In fact, the last 30+ configs have been exactly the same.
Over the past few years an API call would occasionally hang and I'd have to make the request again, but it's been mostly set it and forget it.
Starting tonight - with no changes to the caddy server or API config templates, which have been working for months - the failure rate (hanging) suddenly became so high that I can no longer use the API for a complete set of changes.
I've include my API calls below. Caddy will hang on any of them, but it won't make it through more than 3 before hanging and never completing. I have not been able to get it to complete a full set of changes, even after restarts and upgrades.
Loading the full config from scratch via API has always been hit or miss - so I typically just add each piece individually as shown in the curl examples below.
If I load a barebones template of
~/.config/caddy/autosave.jsonand then load the most recent backup from the API, that works. That may just have been the luck of the draw, or it may indicate that the number of configs and size of the file is related to the hanging.Troubleshooting
-rw-r--r--)caddydoesn't fix the issue~/.local/share/caddy(a restart after that would put us over the Let's Encrypt limits)
Example Config
This omits a fair amount of boilerplate from the initial setup - which has not changed and has been working for a long, long time - but rather represents the config that is added for new LXCs and VMs.
{ "apps": { "http": { "servers": { "srv443": { "listener_wrappers": [ { "routes": [ { "handle": [ { "@id": "project-foo-1_lxcs_example_com_tls_routing", "handler": "subroute", "routes": [ { "handle": [ { "connection_policies": [ { "alpn": [ "http/1.1" ] } ], "handler": "tls" }, { "handler": "subroute", "routes": [ { "handle": [ { "handler": "proxy", "upstreams": [ { "@id": "project-foo-1_lxcs_example_com_tls_proxy_ssh", "dial": [ "10.11.5.132:22" ] } ] } ], "match": [ { "ssh": {} } ] }, { "match": [ { "http": [ { "host": [ "project-foo-1.lxcs.example.com" ] } ] } ] } ] } ], "match": [ { "tls": { "sni": [ "project-foo-1.lxcs.example.com" ] } } ] } ] } ] } ] } ], "routes": [ { "@id": "project-foo-1_lxcs_example_com_http_routing", "handle": [ { "handler": "subroute", "routes": [ { "handle": [ { "handler": "reverse_proxy", "headers": { "request": { "set": { "Host": [ "project-foo-1.lxcs.example.com" ] } } }, "upstreams": [ { "@id": "project-foo-1_lxcs_example_com_http_proxy_ip", "dial": "10.11.5.132:3080" } ] } ] } ] } ], "match": [ { "host": [ "project-foo-1.lxcs.example.com" ] } ], "terminal": true } ] } } }, "tls": { "automation": { "policies": [ { "@id": "project-foo-1_lxcs_example_com_tls_policy", "subjects": [ "project-foo-1.lxcs.example.com" ] } ] }, "certificates": { "automate": [ "project-foo-1.lxcs.example.com" ] } } } }Example API Calls
XCaddy
This is the script that I use to build caddy. I just did a fresh build with the latest
xcaddy,go, andcaddytoday.Example full config reload
This hangs forever.
The text was updated successfully, but these errors were encountered: