Multiple instances of pihole-FTL running

tchris227 · June 25, 2020, 12:36am

I'm having the same issue. Was having a couple of issues after the upgrade to 5.0, so I wiped the system and did a fresh install. It worked fine for a couple of days, but now I get the slow web interface and "DNS service not running" status again. Have you found a resolution?

Debug token: https://tricorder.pi-hole.net/zzv4wgv0sh

One thing that stood out to me is all of the pihole-FTL instances (84 of them). Is this normal?

[80] is in use by lighttpd
[80] is in use by lighttpd
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[53] is in use by pihole-FTL
[53] is in use by pihole-FTL
[4711] is in use by pihole-FTL
[4711] is in use by pihole-FTL

yubiuser · June 25, 2020, 7:33am

I moved your post to a new topic.
There should not be multiple instances of pihole-FTL running simulaniously.

Please confirm with pidof pihole-FTL how many pids are returned. If more than one, does pihole restartdns fix this?

Coro · June 25, 2020, 9:37am

I use dhcp-script which launches additional processes. Use pstree to check if they all belong to the same mother process or if they are really different instances of the same.

tchris227 · June 26, 2020, 12:03am

Thanks for the quick reply! I rebooted yesterday, and pihole -d is down to listing pihole-FTL 32 times today.

New debug token: https://tricorder.pi-hole.net/8mk6ezdqx3

pidof pihole-FTL returns:

23762 22949 18343 15019 13386 12510 3316 701

pstree returns:

systemd─┬─agetty
        ├─alsactl
        ├─avahi-daemon───avahi-daemon
        ├─bluetoothd
        ├─cloudflared───14*[{cloudflared}]
        ├─cron
        ├─dbus-daemon
        ├─dhcpcd
        ├─glances
        ├─hciattach
        ├─lighttpd───php-cgi───4*[php-cgi]
        ├─pihole-FTL─┬─7*[pihole-FTL]
        │            └─6*[{pihole-FTL}]
        ├─rngd───3*[{rngd}]
        ├─rsyslogd───3*[{rsyslogd}]
        ├─sshd───sshd───sshd───bash───pstree
        ├─2*[systemd───(sd-pam)]
        ├─systemd-journal
        ├─systemd-logind
        ├─systemd-timesyn───{systemd-timesyn}
        ├─systemd-udevd
        ├─thd
        ├─upsd
        ├─upsmon───upsmon
        ├─usbhid-ups
        └─2*[wpa_supplicant]

Then I tried to restartdns, and it failed. It recommended running a couple of commands. I ran those, along with pidof and pstree again. All of those results are here: https://tricorder.pi-hole.net/3iolwgcbrg

Then I ran pihole -d again: https://tricorder.pi-hole.net/uft80cyxx7

yubiuser · June 26, 2020, 8:03am

What is the output of

/var/log/pihole-FTL.log when the the web interface says "DNS service not running"? Does it show an error, FTL crash or similar?

At the moment there is another crash report involving multiple instances of FTL, it might be related:

github.com/pi-hole/FTL

FTL crashed (sqlite3_finalize+0x37)

opened 02:44PM - 24 Jun 20 UTC

closed 09:23PM - 11 Aug 20 UTC

JohnstonCode

Bug

``` [2020-06-22 19:49:47.166 1937] !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!…!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! [2020-06-22 19:49:47.166 1937] ----------------------------> FTL crashed! <---------------------------- [2020-06-22 19:49:47.166 1937] !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! [2020-06-22 19:49:47.166 1937] Please report a bug at https://github.com/pi-hole/FTL/issues [2020-06-22 19:49:47.166 1937] and include in your report already the following details: [2020-06-22 19:49:47.166 1937] FTL has been running for 8821 seconds [2020-06-22 19:49:47.166 1937] FTL branch: fix/fhriley-fix_buf_overflow [2020-06-22 19:49:47.166 1937] FTL version: vDev-3c0553e [2020-06-22 19:49:47.166 1937] FTL commit: 3c0553e [2020-06-22 19:49:47.166 1937] FTL date: 2020-06-18 19:33:27 +0200 [2020-06-22 19:49:47.167 1937] FTL user: started as pihole, ended as pihole [2020-06-22 19:49:47.167 1937] Compiled for armhf (compiled on CI) using arm-linux-gnueabihf-gcc (Debian 6.3.0-18) 6.3.0 20170516 [2020-06-22 19:49:47.167 1937] Received signal: Segmentation fault [2020-06-22 19:49:47.167 1937] at address: 0x59 [2020-06-22 19:49:47.167 1937] with code: SEGV_MAPERR (Address not mapped to object) [2020-06-22 19:49:47.168 1937] Backtrace: [2020-06-22 19:49:47.169 1937] B[0000]: 0x4768d6, /usr/bin/pihole-FTL(+0x258d6) [0x4768d6] [2020-06-22 19:49:47.407 1937] L[0000]: /root/project/src/signals.c:94 [2020-06-22 19:49:47.416 1937] B[0001]: 0x76e16130, /lib/arm-linux-gnueabihf/libc.so.6(__default_rt_sa_restorer+0) [0x76e16130] [2020-06-22 19:49:47.416 1937] B[0002]: 0x4bcf7e, /usr/bin/pihole-FTL(+0x6bf7e) [0x4bcf7e] [2020-06-22 19:49:47.605 1937] L[0002]: /root/project/src/database/sqlite3.c:27530 [2020-06-22 19:49:47.621 1937] B[0003]: 0x4cac92, /usr/bin/pihole-FTL(+0x79c92) [0x4cac92] [2020-06-22 19:49:47.777 1937] L[0003]: /root/project/src/database/sqlite3.c:80717 [2020-06-22 19:49:47.793 1937] B[0004]: 0x4f8f3c, /usr/bin/pihole-FTL(+0xa7f3c) [0x4f8f3c] [2020-06-22 19:49:47.949 1937] L[0004]: /root/project/src/database/sqlite3.c:80751 [2020-06-22 19:49:47.965 1937] B[0005]: 0x4f9010, /usr/bin/pihole-FTL(sqlite3_finalize+0x37) [0x4f9010] [2020-06-22 19:49:48.120 1937] L[0005]: /root/project/src/database/sqlite3.c:27946 [2020-06-22 19:49:48.137 1937] B[0006]: 0x47bdd6, /usr/bin/pihole-FTL(+0x2add6) [0x47bdd6] [2020-06-22 19:49:48.157 1937] L[0006]: /root/project/src/database/gravity-db.c:490 [2020-06-22 19:49:48.159 1937] B[0007]: 0x48b942, /usr/bin/pihole-FTL(+0x3a942) [0x48b942] [2020-06-22 19:49:48.183 1937] L[0007]: /root/project/src/dnsmasq/dnsmasq.c:1254 [2020-06-22 19:49:48.188 1937] B[0008]: 0x76e16120, /lib/arm-linux-gnueabihf/libc.so.6(__default_sa_restorer+0) [0x76e16120] [2020-06-22 19:49:48.188 1937] B[0009]: 0x4f9044, /usr/bin/pihole-FTL(sqlite3_finalize+0x6b) [0x4f9044] [2020-06-22 19:49:48.397 1937] L[0009]: /root/project/src/database/sqlite3.c:25801 [2020-06-22 19:49:48.414 1937] B[0010]: 0x47bdd6, /usr/bin/pihole-FTL(+0x2add6) [0x47bdd6] [2020-06-22 19:49:48.434 1937] L[0010]: /root/project/src/database/gravity-db.c:490 [2020-06-22 19:49:48.436 1937] B[0011]: 0x48b796, /usr/bin/pihole-FTL(+0x3a796) [0x48b796] [2020-06-22 19:49:48.460 1937] L[0011]: /root/project/src/dnsmasq/dnsmasq.c:1981 [2020-06-22 19:49:48.463 1937] B[0012]: 0x48ca50, /usr/bin/pihole-FTL(main_dnsmasq+0xc07) [0x48ca50] [2020-06-22 19:49:48.487 1937] L[0012]: /root/project/src/dnsmasq/dnsmasq.c:1206 [2020-06-22 19:49:48.489 1937] B[0013]: 0x46c740, /usr/bin/pihole-FTL(main+0xa7) [0x46c740] [2020-06-22 19:49:48.507 1937] L[0013]: /root/project/src/main.c:95 [2020-06-22 19:49:48.509 1937] B[0014]: 0x76e00718, /lib/arm-linux-gnueabihf/libc.so.6(__libc_start_main+0x10c) [0x76e00718] [2020-06-22 19:49:48.509 1937] ------ Listing content of directory /dev/shm ------ [2020-06-22 19:49:48.509 1937] File Mode User:Group Filesize Filename [2020-06-22 19:49:48.510 1937] rwxrwxrwx root:root 260 . [2020-06-22 19:49:48.510 1937] rwxr-xr-x root:root 4K .. [2020-06-22 19:49:48.510 1937] rw------- pihole:pihole 4K FTL-per-client-regex [2020-06-22 19:49:48.510 1937] rw------- pihole:pihole 16K FTL-dns-cache [2020-06-22 19:49:48.510 1937] rw------- pihole:pihole 29K FTL-overTime [2020-06-22 19:49:48.510 1937] rw------- pihole:pihole 1M FTL-queries [2020-06-22 19:49:48.510 1937] rw------- pihole:pihole 20K FTL-upstreams [2020-06-22 19:49:48.510 1937] rw------- pihole:pihole 324K FTL-clients [2020-06-22 19:49:48.511 1937] rw------- pihole:pihole 66K FTL-domains [2020-06-22 19:49:48.511 1937] rw------- pihole:pihole 53K FTL-strings [2020-06-22 19:49:48.511 1937] rw------- pihole:pihole 12 FTL-settings [2020-06-22 19:49:48.511 1937] rw------- pihole:pihole 124 FTL-counters [2020-06-22 19:49:48.511 1937] rw------- pihole:pihole 28 FTL-lock [2020-06-22 19:49:48.511 1937] --------------------------------------------------- [2020-06-22 19:49:48.511 1937] Thank you for helping us to improve our FTL engine! [2020-06-22 19:49:48.511 1937] FTL terminated! ``` _Originally posted by @JohnstonCode in https://github.com/pi-hole/FTL/issues/770#issuecomment-648663985_

DL6ER · June 26, 2020, 8:33am

Okay, so this seems fine. It means that there are 7 TCP workers forked from FTL and 6 threads are surrounding the main process of FTL.

The forked TCP workers need to be listening on port 53 as this is where the communication with the clients are taking place (they do not listen to new connection but, in fact, handle one one).

The issue is now that all the forks feel also responsible for replying to incoming API requests, causing the web interface to become slow. Crashes are unlikely to happen as FTL implements a proper locking architecture to prevent race events.

I'll work on a fix for this, it seems pretty simple. The second issue (restartdns not working properly) is simple to be fixed as well, however, I have to do this at home where my testing Pi-hole is (Monday).

DL6ER · June 26, 2020, 8:56am

@tchris227 Please try

pihole checkout ftl tweak/thread_sqlite3

and check if the API still works and if there are still multiple bindings to 4711. Unfortunately, I'm completely unable to test this myself right now. You can simply go back to something working with

pihole checkout ftl development

in case this is broken.

tchris227 · June 27, 2020, 12:35am

@yubiuser I'll check pihole-FTL.log next time I get the web interface error (rebooted yesterday, so probably tomorrow).

@DL6ER Then I'll reboot and checkout your tweak.

Thank you, both!

tchris227 · June 27, 2020, 2:01pm

Ok, web interface was saying "DNS service not running" again this morning. No FTL crash, but here's yesterday's log:

[2020-06-26 02:32:44.750 23766] SQLite3 message: API call with invalid database connection pointer (21)
[2020-06-26 02:32:44.750 23766] SQLite3 message: misuse at line 157333 of [18db032d05] (21)
[2020-06-26 02:35:33.886 23798] SQLite3 message: API call with invalid database connection pointer (21)
[2020-06-26 02:35:33.886 23798] SQLite3 message: misuse at line 157333 of [18db032d05] (21)
[2020-06-26 02:44:42.223 698] Resizing "/FTL-dns-cache" from 57344 to 61440
[2020-06-26 05:24:14.752 698] Resizing "/FTL-strings" from 81920 to 86016
[2020-06-26 07:00:36.391 29633] SQLite3 message: API called with finalized prepared statement (21)
[2020-06-26 07:00:36.392 29633] SQLite3 message: misuse at line 81711 of [18db032d05] (21)
[2020-06-26 08:18:11.014 698] Resizing "/FTL-dns-cache" from 61440 to 65536
[2020-06-26 09:20:05.712 1521] SQLite3 message: API call with invalid database connection pointer (21)
[2020-06-26 09:20:05.712 1521] SQLite3 message: misuse at line 157333 of [18db032d05] (21)
[2020-06-26 09:51:21.760 698] Resizing "/FTL-strings" from 86016 to 90112
[2020-06-26 09:51:32.088 4289] Remapping "/FTL-strings" from 86016 to 90112
[2020-06-26 09:53:44.358 698] Resizing "/FTL-dns-cache" from 65536 to 69632
[2020-06-26 11:22:31.529 11687] SQLite3 message: API called with finalized prepared statement (21)
[2020-06-26 11:22:31.529 11687] SQLite3 message: misuse at line 81711 of [18db032d05] (21)
[2020-06-26 12:20:11.823 698] Resizing "/FTL-strings" from 90112 to 94208
[2020-06-26 12:28:44.873 17161] SQLite3 message: API call with invalid database connection pointer (21)
[2020-06-26 12:28:44.873 17161] SQLite3 message: misuse at line 157333 of [18db032d05] (21)
[2020-06-26 12:31:40.059 17404] SQLite3 message: API call with invalid database connection pointer (21)
[2020-06-26 12:31:40.059 17404] SQLite3 message: misuse at line 157333 of [18db032d05] (21)
[2020-06-26 12:35:53.860 698] Resizing "/FTL-dns-cache" from 69632 to 73728
[2020-06-26 12:38:49.529 18007] SQLite3 message: API called with finalized prepared statement (21)
[2020-06-26 12:38:49.529 18007] SQLite3 message: misuse at line 81711 of [18db032d05] (21)
[2020-06-26 14:18:11.416 24628] SQLite3 message: API called with finalized prepared statement (21)
[2020-06-26 14:18:11.416 24628] SQLite3 message: misuse at line 81711 of [18db032d05] (21)
[2020-06-26 14:31:57.811 698] Resizing "/FTL-dns-cache" from 73728 to 77824
[2020-06-26 15:33:52.032 698] Resizing "/FTL-strings" from 94208 to 98304
[2020-06-26 15:57:33.516 30101] SQLite3 message: API call with invalid database connection pointer (21)
[2020-06-26 15:57:33.516 30101] SQLite3 message: misuse at line 157333 of [18db032d05] (21)
[2020-06-26 16:36:46.448 698] Resizing "/FTL-dns-cache" from 77824 to 81920
[2020-06-26 16:53:24.270 698] Resizing "/FTL-queries" from 3670016 to 3899392
[2020-06-26 17:37:08.286 698] Resizing "/FTL-dns-cache" from 81920 to 86016
[2020-06-26 18:13:00.373 698] Resizing "/FTL-strings" from 98304 to 102400
[2020-06-26 18:35:58.960 698] Resizing "/FTL-dns-cache" from 86016 to 90112
[2020-06-26 19:11:03.579 698] Resizing "/FTL-dns-cache" from 90112 to 94208
[2020-06-26 19:16:17.417 8685] SQLite3 message: API called with finalized prepared statement (21)
[2020-06-26 19:16:17.417 8685] SQLite3 message: misuse at line 81711 of [18db032d05] (21)
[2020-06-26 19:51:00.228 698] Resizing "/FTL-strings" from 102400 to 106496
[2020-06-26 20:59:42.022 698] Resizing "/FTL-dns-cache" from 94208 to 98304
[2020-06-26 21:28:53.359 698] Resizing "/FTL-dns-cache" from 98304 to 102400
[2020-06-26 21:33:13.502 698] Resizing "/FTL-strings" from 106496 to 110592
[2020-06-26 21:50:53.978 698] Resizing "/FTL-dns-cache" from 102400 to 106496
[2020-06-26 23:41:29.774 698] Resizing "/FTL-strings" from 110592 to 114688

And today's:

[2020-06-27 00:14:48.282 698] Resizing "/FTL-dns-cache" from 106496 to 110592
[2020-06-27 03:32:50.819 698] Resizing "/FTL-dns-cache" from 110592 to 114688
[2020-06-27 06:53:57.947 698] Resizing "/FTL-domains" from 65536 to 131072
[2020-06-27 06:58:04.391 698] Resizing "/FTL-queries" from 3899392 to 4128768
[2020-06-27 07:08:57.120 698] Resizing "/FTL-dns-cache" from 114688 to 118784
[2020-06-27 07:09:40.031 698] Resizing "/FTL-strings" from 114688 to 118784
[2020-06-27 07:49:26.048 698] Resizing "/FTL-dns-cache" from 118784 to 122880
[2020-06-27 08:11:13.363 698] Resizing "/FTL-strings" from 118784 to 122880

New debug token from this morning: https://tricorder.pi-hole.net/pg9xl7f6ef

I rebooted and just ran

Right now, the web interface works, pidof pihole-FTL returns a single pid, and pstree shows only:

├─pihole-FTL───6*[{pihole-FTL}]

I will give it some time to see how it works.

yubiuser · June 27, 2020, 2:34pm

Thanks for the Log. I'm sure DL6ER will have a look when he finds time.

tchris227 · June 28, 2020, 2:37pm

Well, it appears tweak/thread_sqlite3 didn't fix it. The web interface is slow and showing "DNS service not running" status again this morning.

New debug token: https://tricorder.pi-hole.net/e8uvqsgjak

$ pidof pihole-FTL
31693 29942 29210 26496 25316 23712 23554 22101 20147 14819 14644 14349 12583 10981 7724 7287 3975 3835 1162 1039 367

$ pstree
systemd─┬─agetty
        ├─alsactl
        ├─avahi-daemon───avahi-daemon
        ├─bluetoothd
        ├─cloudflared───14*[{cloudflared}]
        ├─cron
        ├─dbus-daemon
        ├─dhcpcd
        ├─glances
        ├─hciattach
        ├─lighttpd───php-cgi───4*[php-cgi]
        ├─pihole-FTL─┬─20*[pihole-FTL]
        │            └─6*[{pihole-FTL}]
        ├─rngd───3*[{rngd}]
        ├─rsyslogd───3*[{rsyslogd}]
        ├─sshd───sshd───sshd───bash───pstree
        ├─2*[systemd───(sd-pam)]
        ├─systemd-journal
        ├─systemd-logind
        ├─systemd-timesyn───{systemd-timesyn}
        ├─systemd-udevd
        ├─thd
        ├─upsd
        ├─upsmon───upsmon
        ├─usbhid-ups
        └─2*[wpa_supplicant]

In pihole-FTL.log, no FTL crash, but I did get this warning shortly after running pihole checkout ftl tweak/thread_sqlite3

* WARNING: Required Linux capability CAP_SYS_NICE not available         *

Yesterday's full pihole-FTL.log: https://tricorder.pi-hole.net/3v97kgjxro

pihole restartdns failed; details here: https://tricorder.pi-hole.net/rpts8b7ylm

DL6ER · June 28, 2020, 6:26pm

Do you still see multiple instances listening on per 4711 ?
If so, could you please provide the pihole-FTL related lines from

pstree -pt

and the full output of

sudo lsof -iTCP -sTCP:LISTEN -n +c 10

?

You do not need to worry about this, this line is caused because you're running a branch based on the development version. This will be fixed when v5.1 is released.

tchris227 · June 28, 2020, 6:39pm

Thanks for the quick reply! Yes, still many instances listening on port 4711 per the pihole debug log. I rebooted this morning, so there aren't as many now as there were earlier, but here's what I've got currently.

$ pidof pihole-FTL
11461 7992 7839 701

$ pstree -pt
systemd(1)─┬─
           ├─pihole-FTL(701)─┬─pihole-FTL(7839)
           │                 ├─pihole-FTL(7992)
           │                 ├─pihole-FTL(11461)
           │                 ├─{DNS client}(707)
           │                 ├─{database}(705)
           │                 ├─{housekeeper}(706)
           │                 ├─{socket listener}(704)
           │                 ├─{telnet-IPv4}(702)
           │                 └─{telnet-IPv6}(703)

$ sudo lsof -iTCP -sTCP:LISTEN -n +c 10
COMMAND      PID     USER   FD   TYPE DEVICE SIZE/OFF NODE NAME
glances      637     root    4u  IPv4  17590      0t0  TCP *:61209 (LISTEN)
cloudflare   643     root    5u  IPv4  15948      0t0  TCP 127.0.0.1:5053 (LISTEN)
cloudflare   643     root    6u  IPv4  15953      0t0  TCP 127.0.0.1:35553 (LISTEN)
sshd         656     root    3u  IPv4  16434      0t0  TCP *:ssh (LISTEN)
sshd         656     root    4u  IPv6  16436      0t0  TCP *:ssh (LISTEN)
upsd         669      nut    4u  IPv4  15817      0t0  TCP 127.0.0.1:nut (LISTEN)
lighttpd     681 www-data    4u  IPv4  15929      0t0  TCP *:http (LISTEN)
lighttpd     681 www-data    5u  IPv6  15930      0t0  TCP *:http (LISTEN)
pihole-FTL   701   pihole    5u  IPv4  15281      0t0  TCP *:domain (LISTEN)
pihole-FTL   701   pihole    7u  IPv6  15283      0t0  TCP *:domain (LISTEN)
pihole-FTL   701   pihole   10u  IPv4  15959      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL   701   pihole   11u  IPv6  15964      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL  7839   pihole    5u  IPv4  15281      0t0  TCP *:domain (LISTEN)
pihole-FTL  7839   pihole    7u  IPv6  15283      0t0  TCP *:domain (LISTEN)
pihole-FTL  7839   pihole   10u  IPv4  15959      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL  7839   pihole   11u  IPv6  15964      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL  7992   pihole    5u  IPv4  15281      0t0  TCP *:domain (LISTEN)
pihole-FTL  7992   pihole    7u  IPv6  15283      0t0  TCP *:domain (LISTEN)
pihole-FTL  7992   pihole   10u  IPv4  15959      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL  7992   pihole   11u  IPv6  15964      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 11461   pihole    5u  IPv4  15281      0t0  TCP *:domain (LISTEN)
pihole-FTL 11461   pihole    7u  IPv6  15283      0t0  TCP *:domain (LISTEN)
pihole-FTL 11461   pihole   10u  IPv4  15959      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 11461   pihole   11u  IPv6  15964      0t0  TCP [::1]:4711 (LISTEN)

DL6ER · June 28, 2020, 7:22pm

Ah yes, I forgot about the fact that child processes inherit sockets from their parents, this is fixed in the change I just pushed. However, this also highlights that this was actually not the problem as only processes that also listen (which the forks don't do) are handling actual content here.

With the latest version, only the main process should be listening on port 4711.

tchris227 · July 2, 2020, 12:50am

Thanks for all the help so far. Any other suggestions on troubleshooting the slow web interface and "DNS service not running" status? If I leave it running without reboot, eventually I start seeing actual DNS issues. I had to reboot a couple nights ago because devices on my network were having trouble with DNS queries. I'm currently at ~45 hours of uptime and the pihole still seems to be working OK for the network, but pihole status is now also returning [✗] DNS service is NOT running. pidof pihole-FTL is returning 21 PIDs.

Anything else in my pstree output above look like it would conflict with pihole?

New debug token: https://tricorder.pi-hole.net/myqqc0gvxu

Coro · July 2, 2020, 7:44am

Does this now work? It certainly works for me in a very quick test:

Concerning the latter, that might be a false-positive, they opened a PR to fix this yesterday:

github.com/pi-hole/pi-hole

Fix pihole status to not rely on a TCP port test

pi-hole:development ← pi-hole:fix/status_checking

opened 04:45PM - 01 Jul 20 UTC

DL6ER

+37 -6

**By submitting this pull request, I confirm the following:** - [X] I have r…ead and understood the [contributors guide](https://github.com/pi-hole/pi-hole/blob/master/CONTRIBUTING.md), as well as this entire template. - [X] I have made only one major change in my proposed changes. - [X] I have commented my proposed changes within the code. - [X] I have tested my proposed changes, and have included unit tests where possible. - [X] I am willing to help maintain this change if there are issues with it later. - [X] I give this submission freely and claim no ownership. - [X] It is compatible with the [EUPL 1.2 license](https://opensource.org/licenses/EUPL-1.1) - [X] I have squashed any insignificant commits. ([`git rebase`](http://gitready.com/advanced/2009/02/10/squashing-commits-with-rebase.html)) --- **What does this PR aim to accomplish?:** The current test can fail even when there is no error i case the max. number of TCP workers is reached. **How does this PR accomplish the above?:** Actually test if there is a `pihole*` process running on port 53. If so, analyze if we bound to IPv4/6 and UDP/TCP. If all four sockets are accepting/listening, we report that the DNS service is running. If some are missing, we report this, too. If no `pihole*` process is listening on port 53, then this is the new (better) criterion for saying: it is not running Example for when everything is fine: ``` $ pihole status [✓] DNS service is listening [✓] Pi-hole blocking is enabled ``` When, e.g., IPv6 is not available: ``` $ pihole status [✗] DNS service is partially listening [✓] UDP (IPv4) [✓] TCP (IPv4) [✗] UDP (IPv6) [✗] TCP (IPv6) [✓] Pi-hole blocking is enabled ``` Or, when FTL is offline: ``` $ pihole status [✗] DNS service is NOT listening ``` **What documentation changes (if any) are needed to support this PR?:** None

Ah, this reminds me of a discussion I've seen on Github yesterday, let's go into this more:

Yes, this:

This very much sounds like this (link to a specific comment in there, also from yesterday):

github.com/pi-hole/FTL

FTL crashed (sqlite3_finalize+0x37)

opened 02:44PM - 24 Jun 20 UTC

closed 09:23PM - 11 Aug 20 UTC

JohnstonCode

Bug

``` [2020-06-22 19:49:47.166 1937] !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!…!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! [2020-06-22 19:49:47.166 1937] ----------------------------> FTL crashed! <---------------------------- [2020-06-22 19:49:47.166 1937] !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! [2020-06-22 19:49:47.166 1937] Please report a bug at https://github.com/pi-hole/FTL/issues [2020-06-22 19:49:47.166 1937] and include in your report already the following details: [2020-06-22 19:49:47.166 1937] FTL has been running for 8821 seconds [2020-06-22 19:49:47.166 1937] FTL branch: fix/fhriley-fix_buf_overflow [2020-06-22 19:49:47.166 1937] FTL version: vDev-3c0553e [2020-06-22 19:49:47.166 1937] FTL commit: 3c0553e [2020-06-22 19:49:47.166 1937] FTL date: 2020-06-18 19:33:27 +0200 [2020-06-22 19:49:47.167 1937] FTL user: started as pihole, ended as pihole [2020-06-22 19:49:47.167 1937] Compiled for armhf (compiled on CI) using arm-linux-gnueabihf-gcc (Debian 6.3.0-18) 6.3.0 20170516 [2020-06-22 19:49:47.167 1937] Received signal: Segmentation fault [2020-06-22 19:49:47.167 1937] at address: 0x59 [2020-06-22 19:49:47.167 1937] with code: SEGV_MAPERR (Address not mapped to object) [2020-06-22 19:49:47.168 1937] Backtrace: [2020-06-22 19:49:47.169 1937] B[0000]: 0x4768d6, /usr/bin/pihole-FTL(+0x258d6) [0x4768d6] [2020-06-22 19:49:47.407 1937] L[0000]: /root/project/src/signals.c:94 [2020-06-22 19:49:47.416 1937] B[0001]: 0x76e16130, /lib/arm-linux-gnueabihf/libc.so.6(__default_rt_sa_restorer+0) [0x76e16130] [2020-06-22 19:49:47.416 1937] B[0002]: 0x4bcf7e, /usr/bin/pihole-FTL(+0x6bf7e) [0x4bcf7e] [2020-06-22 19:49:47.605 1937] L[0002]: /root/project/src/database/sqlite3.c:27530 [2020-06-22 19:49:47.621 1937] B[0003]: 0x4cac92, /usr/bin/pihole-FTL(+0x79c92) [0x4cac92] [2020-06-22 19:49:47.777 1937] L[0003]: /root/project/src/database/sqlite3.c:80717 [2020-06-22 19:49:47.793 1937] B[0004]: 0x4f8f3c, /usr/bin/pihole-FTL(+0xa7f3c) [0x4f8f3c] [2020-06-22 19:49:47.949 1937] L[0004]: /root/project/src/database/sqlite3.c:80751 [2020-06-22 19:49:47.965 1937] B[0005]: 0x4f9010, /usr/bin/pihole-FTL(sqlite3_finalize+0x37) [0x4f9010] [2020-06-22 19:49:48.120 1937] L[0005]: /root/project/src/database/sqlite3.c:27946 [2020-06-22 19:49:48.137 1937] B[0006]: 0x47bdd6, /usr/bin/pihole-FTL(+0x2add6) [0x47bdd6] [2020-06-22 19:49:48.157 1937] L[0006]: /root/project/src/database/gravity-db.c:490 [2020-06-22 19:49:48.159 1937] B[0007]: 0x48b942, /usr/bin/pihole-FTL(+0x3a942) [0x48b942] [2020-06-22 19:49:48.183 1937] L[0007]: /root/project/src/dnsmasq/dnsmasq.c:1254 [2020-06-22 19:49:48.188 1937] B[0008]: 0x76e16120, /lib/arm-linux-gnueabihf/libc.so.6(__default_sa_restorer+0) [0x76e16120] [2020-06-22 19:49:48.188 1937] B[0009]: 0x4f9044, /usr/bin/pihole-FTL(sqlite3_finalize+0x6b) [0x4f9044] [2020-06-22 19:49:48.397 1937] L[0009]: /root/project/src/database/sqlite3.c:25801 [2020-06-22 19:49:48.414 1937] B[0010]: 0x47bdd6, /usr/bin/pihole-FTL(+0x2add6) [0x47bdd6] [2020-06-22 19:49:48.434 1937] L[0010]: /root/project/src/database/gravity-db.c:490 [2020-06-22 19:49:48.436 1937] B[0011]: 0x48b796, /usr/bin/pihole-FTL(+0x3a796) [0x48b796] [2020-06-22 19:49:48.460 1937] L[0011]: /root/project/src/dnsmasq/dnsmasq.c:1981 [2020-06-22 19:49:48.463 1937] B[0012]: 0x48ca50, /usr/bin/pihole-FTL(main_dnsmasq+0xc07) [0x48ca50] [2020-06-22 19:49:48.487 1937] L[0012]: /root/project/src/dnsmasq/dnsmasq.c:1206 [2020-06-22 19:49:48.489 1937] B[0013]: 0x46c740, /usr/bin/pihole-FTL(main+0xa7) [0x46c740] [2020-06-22 19:49:48.507 1937] L[0013]: /root/project/src/main.c:95 [2020-06-22 19:49:48.509 1937] B[0014]: 0x76e00718, /lib/arm-linux-gnueabihf/libc.so.6(__libc_start_main+0x10c) [0x76e00718] [2020-06-22 19:49:48.509 1937] ------ Listing content of directory /dev/shm ------ [2020-06-22 19:49:48.509 1937] File Mode User:Group Filesize Filename [2020-06-22 19:49:48.510 1937] rwxrwxrwx root:root 260 . [2020-06-22 19:49:48.510 1937] rwxr-xr-x root:root 4K .. [2020-06-22 19:49:48.510 1937] rw------- pihole:pihole 4K FTL-per-client-regex [2020-06-22 19:49:48.510 1937] rw------- pihole:pihole 16K FTL-dns-cache [2020-06-22 19:49:48.510 1937] rw------- pihole:pihole 29K FTL-overTime [2020-06-22 19:49:48.510 1937] rw------- pihole:pihole 1M FTL-queries [2020-06-22 19:49:48.510 1937] rw------- pihole:pihole 20K FTL-upstreams [2020-06-22 19:49:48.510 1937] rw------- pihole:pihole 324K FTL-clients [2020-06-22 19:49:48.511 1937] rw------- pihole:pihole 66K FTL-domains [2020-06-22 19:49:48.511 1937] rw------- pihole:pihole 53K FTL-strings [2020-06-22 19:49:48.511 1937] rw------- pihole:pihole 12 FTL-settings [2020-06-22 19:49:48.511 1937] rw------- pihole:pihole 124 FTL-counters [2020-06-22 19:49:48.511 1937] rw------- pihole:pihole 28 FTL-lock [2020-06-22 19:49:48.511 1937] --------------------------------------------------- [2020-06-22 19:49:48.511 1937] Thank you for helping us to improve our FTL engine! [2020-06-22 19:49:48.511 1937] FTL terminated! ``` _Originally posted by @JohnstonCode in https://github.com/pi-hole/FTL/issues/770#issuecomment-648663985_

TL;DR: Pi-hole imposes an upper limit of 20 concurrently running TCP workers at the same time as measure against a resource-exhaustion attack (after all, many Pi-hole are reachable from the public Internet, even when this is really not a good idea).

I checked git blame and this limit has always (at least since 2004) been there and is unchanged. Given the substantial improvement in memory and computing power since 2004, rising this limit is likely necessary!

@webdevelopers Maybe you want to increase the limit of concurrently allowed TCP connections from 20 to something substantially larger?
When more and more (I can only assume IoT) devices use "steady" TCP connections for their DNS, this seems a necessity. dnsmasq (and hence Pi-hole) rejects new TCP connections when the maximum number is reached. This doesn't seem to be the proper way of things (even when I understand why this is technically).

roybatty · July 2, 2020, 4:28pm

I ended up formatting and starting from scratch 2 weeks ago. So far the slow web interface and "DNS service not running" problems have not come back.

DL6ER · July 3, 2020, 7:45am

We can do this. With the massive improvements on memory consumption we've put into v5.0 we can now afford doing this.

Technical details

The TCP DNS RFC requests the ability for dedicated steady DNS connections for specific clients. TCP workers are forks of the main FTL process. The Linux kernel does implement fork() using mmap on a Copy-on-Write basis. In other words: When a TCP worker is created, the memory of the parent and child stays identical. However, it marked as read-only. Hence, an arbitrary number of forks can be created with NO extra memory requirements (besides a smallish bookkeeping overhead inside the kernel).

If now one of the processes (may be the parent or a children) changes a variable, this memory section ("page") is recognized as read-only. The writing process gets a dedicated copy it can privately use for itself. As a result, the memory is no longer identical between the two processes. However, if only(/mostly) read-operations are being performed, no(/little) memory will be copied at all.

As soon as all forks are terminated or have their own copies, the read-only attribute is removed and the main process can reuse the memory without the need for a copy. By this, no memory is wasted.

I'd propose an upper limit of at most 60 workers for the beginning. This should still fit on a Raspberry Pi Zero. We can even make this a configurable setting, however, as this is only a MAX value, it shouldn't matter as the vast majority of users will not reach this limit even remotely.

tchris227 · July 3, 2020, 2:38pm

I wasn't sure how to test it, but yesterday I checked out fix/status_checking. Here's output of pihole version:

  Pi-hole version is fix/status_checking v5.0-498-g94cd7f5 (Latest: v5.0)
  AdminLTE version is v5.0 (Latest: v5.0)
  FTL version is v5.0 (Latest: v5.0)

Was there a better test the change?

With pihole running a little over 24 hours since the upgrade, everything is still working fine so far. Web interface status reports active, and it's responsive. pihole status returns:

[✓] DNS service is listening
     [✓] UDP (IPv4)
     [✓] TCP (IPv4)
     [✓] UDP (IPv6)
     [✓] TCP (IPv6)

  [✓] Pi-hole blocking is enabled

pidof pihole-FTL is returning 21 PIDs again today. My pihole is serving my home network with ~30 devices. It's had 76k queries in the last 24 hours. Does it make sense that I'm hitting the TCP connections limit? Prior to v5.0, I'm not sure how many TCP workers I typically had, but I wasn't getting the "DNS service not running" status. Did anything change in v5.0 that could cause this?

Not sure how significant this is (given pihole is working fine right now), but it appears I still have a number of FTL processes listening on 4711.

$ sudo lsof -iTCP -sTCP:LISTEN -n +c 10
COMMAND      PID     USER   FD   TYPE DEVICE SIZE/OFF NODE NAME
glances      607     root    4u  IPv4  13248      0t0  TCP *:61209 (LISTEN)
cloudflare   619     root    5u  IPv4  16609      0t0  TCP 127.0.0.1:5053 (LISTEN)
cloudflare   619     root    6u  IPv4  16614      0t0  TCP 127.0.0.1:43381 (LISTEN)
sshd         656     root    3u  IPv4  13990      0t0  TCP *:ssh (LISTEN)
sshd         656     root    4u  IPv6  13992      0t0  TCP *:ssh (LISTEN)
upsd         661      nut    4u  IPv4  15220      0t0  TCP 127.0.0.1:nut (LISTEN)
lighttpd     679 www-data    4u  IPv4  15299      0t0  TCP *:http (LISTEN)
lighttpd     679 www-data    5u  IPv6  15300      0t0  TCP *:http (LISTEN)
pihole-FTL  1472   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL  1472   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL  1472   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL  1472   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL  1929   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL  1929   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL  1929   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL  1929   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL  3503   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL  3503   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL  3503   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL  3503   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL  6209   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL  6209   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL  6209   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL  6209   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL  7826   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL  7826   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL  7826   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL  7826   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL  8057   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL  8057   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL  8057   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL  8057   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL  9882   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL  9882   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL  9882   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL  9882   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 10999   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 10999   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 10999   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 10999   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 11154   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 11154   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 11154   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 11154   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 11498   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 11498   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 11498   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 11498   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 12015   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 12015   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 12015   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 12015   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 14047   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 14047   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 14047   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 14047   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 15538   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 15538   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 15538   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 15538   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 15643   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 15643   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 15643   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 15643   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 15736   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 15736   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 15736   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 15736   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 15986   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 15986   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 15986   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 15986   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 17032   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 17032   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 17032   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 17032   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 17378   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 17378   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 17378   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 17378   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 17890   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 17890   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 17890   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 17890   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 18207   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 18207   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 18207   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 18207   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)
pihole-FTL 18287   pihole    5u  IPv4  22390      0t0  TCP *:domain (LISTEN)
pihole-FTL 18287   pihole    7u  IPv6  22392      0t0  TCP *:domain (LISTEN)
pihole-FTL 18287   pihole   10u  IPv4  21388      0t0  TCP 127.0.0.1:4711 (LISTEN)
pihole-FTL 18287   pihole   11u  IPv6  21390      0t0  TCP [::1]:4711 (LISTEN)

Maybe this was unrelated. I'll let pihole keep running for a couple more days and see if it recurs.

Thanks for all the help!

DL6ER · July 5, 2020, 6:23am

No, that's fine.

It depends on the devices. Even when I have a smaller number of devices, I do not have a single TCP worker without me forcing some to exist as none of the devices in my household (Linux machines, Android phones, one web radio) does TCP queries.

The limit has been there since "the beginning of time". The test also seems to be the same since at least version v4.0, so I have no real answer to this, sorry.

According to

you're not running the special branch which is avoiding this so this is expected.