velis74
commented
6 years ago Do you guys offer paid support? This is killing me and i'm not afraid of paying for a solution.
Open velis74 opened 6 years ago
velis74
commented
6 years ago Do you guys offer paid support? This is killing me and i'm not afraid of paying for a solution.
sbalmer
commented
6 years ago Try increasing max-worker-lifetime. 35 seconds is very low.
velis74
commented
6 years ago It is set to 35 seconds only because otherwise there was even more of 502. A busy worker will not be restarted before it completes its current job, so I've seen no ill effects of lowering this setting (except for a bit of CPU usage).
KrazyMax
commented
6 years ago Hi there,
Did you find a solution by chance? I have been struggling the same way you did for days now, it is truly driving me nuts. For the same page, sometimes it displays properly, sometimes not, I really hate this kind of random behavior! I logued my Django app but nothing, and the error in nginx/error.log is not explicit at all. The lifetime parameters is (of what I read on the internet) meant when you try to upload heavy files. But in my case, I am just talking about displaying light pages!
Many thanks for your answer!
velis74
commented
6 years ago Well, actually I was not. As a fallback I'm currently also running an instance of Apache with mod-wsgi. Considering just moving the whole thing back to it. Had no issues like this with that combination.
KrazyMax
commented
6 years ago Damn it. I wanted to move to gunicorn because with Apache2+mod_wsgi, I have the same behavior (always on the same group of page I realize now), and reading apache2 log just gives Truncated or oversized response headers received from daemon process with a wonderful Segmentation fault (11). There must be something else, not related to apache2 nor gnix, but I can't find what. Exhausting 😩
KrazyMax
commented
6 years ago Thank you for your answer by the way!
rdeioris
commented
6 years ago @KrazyMax you are using threads, are you sure your app is thread-safe ? Try disabling them
KrazyMax
commented
6 years ago Hi @rdeioris! Well I am not an Apache2/Gnix expert at all, and I also did not ask myself questions regarding threading actually. I did not define threads in particular.
I changed logging in Apache2 from warnto info to get further details, and I've got this:
[Thu Aug 16 15:23:56.868288 2018] [wsgi:info] [pid 21505:tid 139948258772864] mod_wsgi (pid=21505): Starting process 'mywebsite.fr' with uid=33, gid=33 and threads=15.
So I guess it means I multi-thread with 15 threads. Sorry to look like a noob, but that's what I am regarding server confs.
I changed in mpm_event.conf those 2 parameters: ThreadsPerChild to 1 (default 25) and MaxSpareThreads to 1 (default is 4). Unfortunately, even after a reload and a stop/start of apache2, same issue.
Something interesting I noticed on one page which sometimes display correctly, sometimes throws a server error: when I have an error, almost everytime I do a force refresh in my web browser, it displays correctly!
KrazyMax
commented
6 years ago Final comment @velis74: I identified the issue. I wanted to be able to use f-string. As this feature is only available on Python 3.6+, I did install Python 3.7, without thinking at all the issue could come from a stable release of Python. So, I decided to delete anything related to f-strings in my own code, then to go back to my Python 3.5, just to see. And that was it. I followed every tutorials I found on the internet, from Python website to mod_wsgi, installing Python 3.7 by sharing it as recommanded and so on, but I had no error message, no clue that Python would be at fault.
So maybe have a look on how your installed Python on your server, because now the issue for Apache2 as for Nginx is solved!
I'm mad at me, because I was too confident on my Python 3.7 install which did not throw any error at install or when Apache2/Nginx started to run.
velis74
commented
6 years ago @KrazyMax So you're saying that using an unsupported feature (f-strings) with python 3.5 resulted in RANDOM 502s on your server? Wouldn't that, like, fail EVERY time? How does one debug something like that????
ymartin59
commented
6 years ago Error seems to happen after many seconds. From https://monicalent.com/blog/2013/12/06/set-up-nginx-and-uwsgi/ I have found out that "limit-as" uwsgi option should be increased to get memory allocations pass.
bspai
commented
5 years ago I too got the same error upstream prematurely closed connection while reading response header from upstream , but for nginx-uwsgi-flask docker image. In my case, the issue was because in the Dockerfile, I had installed uwsgi using apt-get. So, to fix this I had 2 options.
plugins = python to the uwsgi app config. Referencevelis74
commented
5 years ago I will try this
hanhuizhu
commented
5 years ago i get the same problem ,do you resolve it ? @velis74
velis74
commented
5 years ago nope
xrmx
commented
5 years ago @velis74 you should probably get some hints in uwsgi log. I'll give it a try removing selectively the following configurations:
post-buffering = 1 harakiri = 300 max-worker-lifetime = 35
hanhuizhu
commented
5 years ago i have solve this problem, by chang uwsgi protocal to http protocal.
[uwsgi] http=127.0.0.1:7020 chdir=/opt/www/sqdashi/savemoney/src/main/python/com wsgi-file=savemoney/wsgi.py processes=16 threads=2 master=True pidfile=uwsgi.pid daemonize=/opt/www/sqdashi/savemoney/src/main/python/com/log/uwsgi-@(exec://date +%%Y-%%m-%%d).log
proxy_pass http://127.0.0.1:7020;
i task one thousand requests and no happend error
hanhuizhu
commented
5 years ago you can try this ,if you still want @velis74
velis74
commented
5 years ago Thanks, @hanhuizhu I will definitely try this. I thought sockets were the most reliable and fastest solution, so it never occurred to me to switch to something else...
gtarnaras
commented
5 years ago @hanhuizhu , thank you! I was hitting on exactly the same issue and i was struggling to find a solution. Service worked randomly . Moving away from sockets did the trick for me as well... For the record, in case it helps someone else, my setup was dockerized and uwsgi was installed through pip.
pawisoon
commented
5 years ago This helped me a lot https://www.codesd.com/item/django-gunicorn-nginx-download-large-error-file-502.html and also check Gunicorn status: sudo systemctl status gunicorn In my case, there were no permissions for saving in directory 😆
olivierdalang
commented
5 years ago Probably related/duplicate to this : https://github.com/unbit/uwsgi/issues/1702
olivierdalang
commented
5 years ago Removing --threads=4 seems to fix the issue here ?!
guoyu7157
commented
5 years ago I have met a similar question,when uwsgi set multi threads and reach the reload_on_rss,uwsgi worker respawn.However the nginx get 502 error. uwsgi seems not to wait for the resp complete.
joekohlsdorf
commented
4 years ago I have tried shifting my workload from gunicorn to uwsgi and immediately hit this issue. I have created a minimal example which allows everyone to reproduce this in seconds, all you need is Docker: https://github.com/joekohlsdorf/uwsgi-nginx-bug
If there is anything more we can contribute to fixing this bug I'll be happy to help. My biggest issue is that uwsgi is silent about these errors so I have no idea where to start looking.
Copying the README of my repo which has some additional info:
This repo is a minimal example to reliably reproduce a bug where uwsgi closes connections prematurely.
You need Docker to run this demo.
make upupstream prematurely closed connection while reading response header from upstream from then nginx container appearinguwsgi which is clean.workload is an empty Django project. Django is served by uwsgi in worker mode running 2 processes.nginx runs an nginx reverse proxy to uwsgi.ab runs apachebench against the nginx container.Change setting XYZ of uwsgi.
You are overflowing the listen backlog.
This is a benchmark problem.
The problem is caused by Nginx.
How can I change the uwsgi config?
uwsgi.ini and run again.How can I change what is installed in the Docker images?
Dockerfile and run make rebuild.In the below graph you can see two days of these errors in a production environment.
First day is uwsgi, second day is gunicorn. Similar traffic, same amount of processes. gunicorn errors are due to timeout (gunicorns harakiri), unexpected errors on gunicorn are 0.
This environment is running with very low load, about 30% worker usage.
xrmx
commented
4 years ago @joekohlsdorf have you tried enlarging the listen queue? gunicorn one is like 20x times the uwsgi default.
velis74
commented
4 years ago Mine is at 8000, that should be enough, I should think.
rdeioris
commented
4 years ago There are so many reasons to have this kind of error rates, that this issue is becaming a source of random solutions :(
The (probably incomplete) list of things to check:
And please, please, stop creating huge backlog queues (they are ok for benchmarks, but then set them to meaningful values based on your QoS policies), they consume precious kernel memory.
joekohlsdorf
commented
4 years ago Until now I was under the impression that uwsgi would warn when the listen queue gets full, there are several related settings but I never got any warning, this is why I never changed this setting. So these errors might not be shown when running with --http which is problematic.
I raised the listen queue to 500 and my test passes without a single error!
Can we please agree that the default listen queue is too small? This is not a benchmark, I showed you 48 hours of real world errors comparing uwsgi to gunicorn on a large scale deployment across hundreds of instances running with very low average worker load (30% target for the test). This is not a random hiccup but a consistent problem.
Let's compare the default listen backlog of some other application servers to uwsgi:
The webservers are not very comparable because they generally don't have to wait for a worker to become available but for reference I still included them.
Test result with listen backlog 500 (0 errores) of my repo, as you can see from the response times this test is not at all trying to overflow the system:
ab_1 | Requests per second: 388.00 [#/sec] (mean)
ab_1 | Time per request: 515.457 [ms] (mean)
ab_1 | Time per request: 2.577 [ms] (mean, across all concurrent requests)
ab_1 | Transfer rate: 6260.37 [Kbytes/sec] received
ab_1 |
ab_1 | Connection Times (ms)
ab_1 | min mean[+/-sd] median max
ab_1 | Connect: 0 0 0.9 0 54
ab_1 | Processing: 13 515 54.1 505 885
ab_1 | Waiting: 13 514 53.8 504 881
ab_1 | Total: 35 515 53.9 505 885
ab_1 |
ab_1 | Percentage of the requests served within a certain time (ms)
ab_1 | 50% 505
ab_1 | 66% 521
ab_1 | 75% 538
ab_1 | 80% 551
ab_1 | 90% 581
ab_1 | 95% 607
ab_1 | 98% 650
ab_1 | 99% 697
ab_1 | 100% 885 (longest request)After doing some synthetic tests I gave it another try in production with the listen backlog set to 4096. Deployment of the change from gunicorn to uwsgi starts at 23:30, rollback starts at 23:45. We can conclude that the listen backlog is not the cause of the problem under low load.
rdeioris
commented
4 years ago @joekohlsdorf my comment was not an answer to your specific one, was a general consideration about this issue and the amount of 'randomness' of some of the solutions. Btw the warning about listen queue is only available for TCP sockets on Linux (where the operating system supports monitoring it). I have sent a patch for unix sockets years ago (5 or 6 at least) to the LKML but never got merged :(
I gave a quick look at your example github project, and i have seen you are using the http proxy. This is adding another layer to your stack, so nginx is sending requests to the uWSGI http proxy, that again sends another request to the backend (double proxying). Use http-socket for having a production-like setup, so you have nginx directly talking to uWSGI workers like gunicorn. Obviously this is not 'the' solution but should give you a simpler stack to debug/inspect/monitor. You can use tools like uwsgitop or strace to understand what is going on.
The uWSGI http proxy is useful for configurations without nginx or for when you want backends processes to configure the proxy (something generally useful only for hosting providers)
I hope it will be useful.
(additional note, add master = true too, it will add better workers management too)
velis74
commented
4 years ago I agree that this issue seems to have a great many facets. However, it would seem that they all have one thing in common: uwsgi at some point or another decides to not process a particular request and simply "fails" doing so, resulting in a 502.
As far as I have seen, the causes for that were plenty, but mostly revolved around strict settings observations that resulted in a worker's termination even though the worker was doing just fine and processing the request (e.g. the harakiri setting) or not processing the reqest at all due to one or another queue being full (this latest example with max socket connections)
I myself only have mod_wsgi to compare against, but I would call this an issue to be looked at. It simply won't do to have a server "randomly" reject processing requests. There should at least be log entries showing that this happened and why. It's not like uwsgi doesn't know it did it!
rdeioris
commented
4 years ago @velis74 note that technically uWSGI here does not know what is happening because it is an error generated by nginx not being able to communicate with it, so it happens even before the accept() is completed (otherwise it would be an easy issue to manage). I agree that the defaults are maybe too low for 2020 (they have been set in 2009 ;)
rdeioris
commented
4 years ago @joekohlsdorf just for completeness, another common cause are 'stuck workers'. One of you request is blocked and the worker will not be able to manage other requests until the 'blocked loop' ends. The only way to solve this kind of issues is using harakiri (generally you set it to the maximum amount of time you want to allow a request to run, NOTE: this is a brutal kill of the worker, so you can potentially ends with half-baked stuff or corruptions).
joekohlsdorf
commented
4 years ago The repo is just the minimal config I came up with to reproduce the problem. At least for that case we saw that modifying the listen backlog has a positive effect.
In the real config I also have master = True, no-defer-accept = True, harakiri = 30 (errors are not caused by harakiri or memory kill) and a bunch of other stuff. I experimented with many of these and other configurations and it made no difference.
Until now I was not aware that I should use http-socket instead of http so I'll give it another go with that.
wdifruscio
commented
4 years ago Having the same sort of issue here, and I can't for the life of me figure out how to tune my uwsgi so it works properly... It seems when a certain throughput is reached, or certain requests are being processed my app performance starts to degrade and I get 502 errors, but the load isn't very high... maybe throughput of 400-500ish
joekohlsdorf
commented
4 years ago I forgot to leave feedback about another production test I did using http-socket:
Unfortunately I had exactly the same result.
Simanas
commented
4 years ago Hello guys! First of all, let me thank you all for your work with uwsgi. It's been my choice of tool for deploying django projects along with nginx for last decade. Although it's really not always as easy to configure as I would like. When it works, it's ok, but if something starts giving weird behavior... well you are basically in a big trouble...
So.. I am having the same exact problem here. I have one url that constantly accepts file uploads of 5 - 100Mb in size from multiple workers every ~5s. But about every few hours this thing goes in to some ill mode and I get a bunch of 502 errors with upstream prematurely closed connection while reading response header from upstream message. It takes about 15 minutes and it magically heals it self up until it happens again 2 or 3 hours later. Here is my simple uwsgi config file:
[uwsgi]
project = happyTree
uid = happyTree
base = /home/%(uid)
chdir = %(base)/website
home = /home/happyTree/.virtualenvs/happyTree
module = core.wsgi:application
master = true
processes = 192
socket = /run/uwsgi/%(project).sock
chown-socket = %(uid):www-data
chmod-socket = 660
vacuum = true
harakiri = 120
max-requests=5000
http-timeout = 120
socket-timeout = 120
daemonize=/var/log/uwsgi/happyTree.log@rdeioris - Love your insights! Could you please kindly look in to this and give some advice. Do you have any ideas on how should I solve this?
To be 100% honest UWSGI is like a magic box to me... all I need from it is to work! Tweaking these parameters were never easy, nor do they give me what want every time. Internet is full of documentation on what every parameter means, but how do you put them all together in to one working instance? That's still a mystery to me.
Seems like most of the devs suffer the same issue, therefore ending up just using http instead of socket, which is obviously not the way to go, but decent tutorial on how to tune your uwsgi instance is really lacking. A sea of python developers would be more than thankful if someone who deeply understands uwsgi would give a practical tutorial on how do you prepare your uwsgi for different tasks. What are the best practices and etc...
Appreciate your work. Looking forward for hearing back from someone who might explain my case and offer some aid. Thank you!
kamartem
commented
3 years ago Run into the same issue on different 5 hosts (osx, linux) all running the same service in docker.
If i turn off threading (enable-threads = false) i never got 502.
For test purposes to catch 502 more often on 'threads-on' configuration i wrote such configuration:
processes = 1
enable-threads = true
threads = 20
max-requests = 5
max-worker-lifetime = 5
min-worker-lifetime= 1UPDATE:
found in sources, that on hitting max-worker-lifetime option, signal SIGWINCH is sending. Tried to send it manually and nothing happens - worker just get stuck. But it respawns if i manually send sigterm/sigkill
omid-ak
commented
3 years ago do you resolve it? i have same problem.
Simanas
commented
3 years ago I have switched to gunicorn.
IngvarListard
commented
3 years ago Got this problem in production after upgrade django from 1.9 to 2.2. In my case the problem was in new Content-Length header, and that the appropriate settings wasn't enabled on fastrouter
https://uwsgi-docs.readthedocs.io/en/latest/HTTP.html#http-keep-alive
pmcl77
commented
2 years ago I had the same issue with uwsgi, tried tons of different configs, nothing helped really. It seemed the problem was happening, after workers respawned. Sometime workers would not respawn and get stuck... could not make it work. switched to gunicorn and have not have any issues ever since.
btilongnguyen
commented
2 years ago This problem seems only to happen when we enable multithreaded support. In my case, I accidentally found out that enabling thunder-lock resolved the issue. This feature is about to tackle the problem of thundering herd though, I'm not sure how its internal implementation affects the multithreading mechanism of uWSGI. Really appreciate it if someone could comprehend and explain.
I also noticed that increasing the computing resource (like number of CPUs, memory, etc.) seems to help, too.
ipaqmaster
commented
1 year ago Ran into the same problem the past few months with the python36 helper. Everything looks ok on the service but no matter how many tweaks I made (including thunder lock) uwsgi refused to cooperate with nginx returning "upstream prematurely closed connection".
Various searches finding no official support on this at all. I'll get it working in a VM and come back if I find an answer at least for our case; it feels like something tricky in the way nginx communicates with uwsgi's socket as the script works perfectly fine and uwsgi still throws errors if there are any in the script.. so it feels like a communication layer issue.
E: Solved it for our environment
We previously used --http on any IP with :xxxx --http :1234 and started using socket files instead and python3.
I thought we could get away with http-socket = /any/socket/file/path.sock with http-modifiers1 = 9 with nginx pointing to it with uwsgi_pass unix:/any/socket/file/path.sock, but in reality I needed to use uwsgi-socket = /any/socket/file/path.sock in the ini file. Also couldn't forget need-plugins = cgi,http,python36 for our suite.
chasays
commented
1 year ago I follow the below instructions, and worked fine
app = Flask(name) app.config['MAX_CONTENT_LENGTH'] = 16 1024 1024
1. Tune the uWSGI worker settings: You could also tune the uWSGI worker settings to handle more requests. For example, you could increase the workers
1. Increase the buffer size: You could increase the uWSGI buffer size to allow for larger requests. To do this, add the buffer-size option to the uWSGI[uwsgi] ... workers = 4 buffer-size = 32768 ...
volodkindv
commented
1 year ago I solved this problem by changing the "threads" setting:
threads = 1.
Maybe it helps for somebody.
hanamurayuki
commented
12 months ago I'm using nginx, uwsgi, django containers on kubernetes. I faced this problem.
I have changed buffer-size, harakiri, limit-as etc parameter in uwsgi.ini, but nothing goes well.
I finally realized the reason is resources.limits.memory in k8s Deployment yaml.
It goes well after I increased its memory size.
# deployment.yaml
limits:
cpu: 400m
# memory: 400Mi # before
memory: 600Mi # after
drnguyenn
commented
12 months ago @hanamurayuki It must be something related to resource usage. I also faced a similar problem a long time ago, and have tried tons of config but nothing actually seems to help. I decided to try increasing CPU and memory for the server and the problem just naturally ceases to happen.
Hi,
I've deployed my app with nginx + uwsgi.
It seems to be working fine except for the pact that every now and then, request will yield a 502 error code.
When this happens, I get a line like this in nginx/error.log:
2018/06/14 10:55:03 [error] 4674#4674: *18888 upstream prematurely closed connection while reading response header from upstream, client: 192.168.100.1, server: easyset.eu, request: "GET /main_menu_icons/paid_plans.svg HTTP/1.1", upstream: "uwsgi://unix:///tmp/mars.sock:", host: "www.easyset.eu", referrer: "https://www.easyset.eu/"It does not matter what request is made - the error is completely random. On all types of requests.The relevant section of nginx site.conf
and uwsgi configuration:
I've been researching this issue for more than a month now, but none of the remedies suggested seems to be working for me. I also did not detect the randomness factor in the other reported issues. Usually there was some misconfiguration involved, but not in my case: exactly the same command will work 90% of the time and fail the other 10% of the time.
It's quite annoying as pages only load partially and one can never be sure what has loaded and what hasn't.
I'd be grateful for any suggestions on what I'm missing here. Jure