Observed in production. Got the following warnings in diags.log
"Connection leak from http keep-alive system"
Our connections to origin would increase and the number of connections in CLOSE_WAIT were enormous.
I think the issue was when the origin URL was http with default port. That URL was remapped to https with default port. The default port stored in HttpServerSession->server_ip was not updated.
When the connection was closed or timed out of the session pool, it would be looked up with port 443. But the session was stored via the server_ip value with port 80 and would never match.
Relatively small change in HTTPHdr::_file_target_cache.
Running the fix in production to verify early results.