2236510 – [RHCS 5.3][Severe performance degradation after enabling SSL in Beast]

Bug 2236510 - [RHCS 5.3][Severe performance degradation after enabling SSL in Beast]

Summary: [RHCS 5.3][Severe performance degradation after enabling SSL in Beast]

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Ceph Storage
Classification:	Red Hat Storage
Component:	RGW
Sub Component:
Version:	5.3
Hardware:	Unspecified
OS:	Linux
Priority:	unspecified
Severity:	medium
Target Milestone:	---
Target Release:	8.0
Assignee:	Mark Kogan
QA Contact:	Vidushi Mishra
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	2270679 2317218 2331652 2333012
TreeView+	depends on / blocked

Reported:	2023-08-31 14:16 UTC by nravinas
Modified:	2025-05-14 04:25 UTC (History)
CC List:	14 users (show)
Fixed In Version:	ceph-18.2.1-77.el9cp
Doc Type:	Bug Fix
Doc Text:	.SSL sessions can now reuse connections for uploading multiple objects Previously, during consecutive object uploads using SSL, the cipher negotiations occurred for each object. As a result, there would be a low performance of objects per second transfer rate. With this fix, the SSL session reuse mechanism is activated, allowing supporting clients to reuse existing SSL connections for uploading multiple objects. This avoids the performance penalty of renegotiating the SSL connection for each object.
Clone Of:
Clones:	2270679 2331652 2333012 (view as bug list)
Environment:
Last Closed:	2024-11-25 08:59:27 UTC
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Github	ceph ceph pull 55967	None	Merged	rgw/beast: Enable SSL session-id reuse speedup mechanism	2024-03-21 11:53:43 UTC
Red Hat Issue Tracker	RHCEPH-7298	None	None	None	2023-08-31 14:17:50 UTC
Red Hat Product Errata	RHBA-2024:10216	None	None	None	2024-11-25 08:59:40 UTC

Description nravinas 2023-08-31 14:16:30 UTC

**Description of problem:**

RGW performance is severely impacted after enabling SSL in Beast frontend. A performance degradation of approximately 90% was observed during the testing, comparing the latency between HTTP and HTTPS requests. 

**Version-Release number of selected component (if applicable):**

RHCS 5.3z3

**How reproducible**

Please see the following comment for a complete description of Beast SSL configuration and the testing done. 

**Actual results:**

After enabling SSL in Beast, the performance decreased by nearly 90%. Their clients cannot access the buckets with this configuration, as their requests time-out. 

**Expected results**

We would expect some performance penalty due to the HTTPS encryption and payload, but not so severe. 

**Additional information **

N/A

Comment 52 errata-xmlrpc 2024-11-25 08:59:27 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Red Hat Ceph Storage 8.0 security, bug fix, and enhancement updates), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2024:10216

Comment 57 Red Hat Bugzilla 2025-05-14 04:25:03 UTC

The needinfo request[s] on this closed bug have been removed as they have been unresolved for 120 days

Note You need to log in before you can comment on or make changes to this bug.