Issue #17739 has been updated by Charlie Sharpsteen. Keywords changed from ssl backlog to ssl backlog customer
---------------------------------------- Feature #17739: The puppet agent should be able to reuse HTTPS connections to the master https://projects.puppetlabs.com/issues/17739#change-88239 * Author: Andrew Gaffney * Status: Needs Decision * Priority: Normal * Assignee: Andrew Parker * Category: * Target version: 3.x * Affected Puppet version: * Keywords: ssl backlog customer * Branch: ---------------------------------------- When managing hundreds or thousands of files with puppet (don't ask), the overhead of establishing the HTTPS connection over and over again can really add up. This was especially noticeable when I upgraded to puppet 2.7 and then generated some new certs for some new masters. In my development environment, the puppet agent runtime went up by 50 seconds. Some debugging with wget, nginx, and strace showed a delay of 0.05s during the SSL negotiation after the server sent its cert to the client. The new keylength default in 2.7 was 4096 bytes where it was only 1024 bytes in 2.6. I explicitly set req_bits and keylength in my puppet.conf and regenerated the certs, only to see the run time drop almost back to "normal". -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/puppet-bugs?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
