Created attachment 28378 [details] output of lsof -p <pid> Hello Team, We are facing high cpu utilization issue for Apache httpd process(child) Apache version:2.2.11 Tomcat version:6.0.18 OS:linux uname-a :Linux WEB10_64 2.6.18-92.el5 #1 SMP Tue Apr 29 13:16:15 EDT 2008 x86_64 x86_64 x86_64 GNU/Linux lsof output is attached below. -->Apache childprocess is waiting for closed state hence it is consuming high CPU.
please collect and post periodic backtraces and ps output.
Created attachment 28444 [details] pstack and gdb trace output...
Created attachment 28445 [details] updated backtrace output of gdb
Created attachment 28446 [details] ps output output of ps command...
The problem seems to happen, when mod_jk reveiced the final package from the AJP back end and at the end of the response request cycle calls ap_finalize_request_protocol(). The connection to the client is an HTTPS connection and maybe it happens during lingering close? Was the lsof taken during the spining CPU? The lsof output does not contain the client connection, so it seems that connection was already closed. The loop seems to be in OpenSSL. What looks suspicious in the dumps is len=0x7fff95282a50 in ssl_io_input_read(). I don't have a real recommendation here. Rainer
Yes, lsof output was taken when Apache process was taking high cpu.. openssl version is 0.9.8b Is this issue related to socket connection or timeouts as in worker.properties we have not set any timeouts?? or is it related to application which is not closing connections properly?? I have gone through many forums for this issue... setting value for CFLAGS=NO_LINGERCLOSE and then building apache again.. whether increasing the ulimit (no of open files) help ?? Please help as this issue is impacting production servers...
I don't see any relation to mod_jk settings. The stacks show the code is looping in the HTTPS handling of the client/browser connection. The lsof output shows, that the connection no longer exists. So it seems some error condition is not handled properly around OpenSSL/mod_ssl. Your Apache and OpenSSL versions are pretty old. Any chance to update and retest? It might well be some problem fixed long ago. Regards, Rainer
No news in 4 years...