Return-Path: <new-httpd-owner-new-httpd-archive=hyperreal.org@apache.org>
Delivered-To: new-httpd-archive@hyperreal.org
Received: (qmail 21462 invoked by uid 6000); 21 May 1999 09:40:48 -0000
Received: (qmail 20760 invoked from network); 21 May 1999 09:40:40 -0000
Received: from penguin-ext.wise.edt.ericsson.se (HELO
 penguin.wise.edt.ericsson.se) (194.237.142.5)
  by taz.hyperreal.org with SMTP; 21 May 1999 09:40:40 -0000
Received: from dsnstar.dsn.ericsson.se (dsnstar.dsn.ericsson.se
 [164.48.68.130])
	by penguin.wise.edt.ericsson.se (8.9.0/8.9.0/WIREfire-1.2) with ESMTP id
 LAA06533
	for <new-httpd@apache.org>; Fri, 21 May 1999 11:39:59 +0200 (MET DST)
Received: from sharp.fm (infobase.ericsson.se [193.78.100.33])
	by dsnstar.dsn.ericsson.se (8.8.5/8.8.5) with ESMTP id LAA22024
	for <new-httpd@apache.org>; Fri, 21 May 1999 11:39:58 +0200 (MET DST)
Message-ID: <374529ED.A01735D5@sharp.fm>
Date: Fri, 21 May 1999 11:39:57 +0200
From: Graham Leggett <minfrin@sharp.fm>
X-Mailer: Mozilla 4.6 [en] (X11; U; SunOS 5.6 sun4u)
X-Accept-Language: en
MIME-Version: 1.0
To: new-httpd@apache.org
Subject: Help to fix a leak
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: new-httpd-owner@apache.org
Precedence: bulk
Reply-To: new-httpd@apache.org

Hi all,

I have narrowed down a specific problem we are having with a busy Apache
installation, I'd appreciate it if someone could confirm for me whether
I am correct in this assumption:

I have an Apache v1.3.6 installation, running with Dave Carrigan's
auth_ldap module, linked against Netscape's libldapssl30.so library.

Over time, the Apache processes slowly get bigger and bigger. This is
despite a graceful restart scheduled every half an hour. Suddenly,
Apache's memory usage suddenly seems to skyrocket, quickly consuming all
2GB of available swap space and swamping the box.

>From what I can understand, Apache on it's own is not at fault, because
disabling the module turns everything back to normal. From what I
understand of modules, auth_ldap is not at fault, because Apache
processes only serve 30 requests before dying, killing the auth_ldap
module and any leaks with it. This leaves the libldapssl30.so library.
>From what I can see, libldapssl30.so is dynamically linked to the Apache
parent process (and as a result all the children) and is only
initialised once - at startup, and this is *not* reinitialised with a
graceful restart. Thus this could be libldapssl30.so that's causing the
problem.

Am I guessing correctly here, or am I way off?

I am desparate to find this problem quickly, as it's a showstopper for
us. If I cannot get LDAP authentication in Apache, I am going to have to
switch my whole architecture to Netscape, and I want to avoid that if I
possibly can, especially if it's a Netscape library bug that is causing
the problem.

Any insight will be appreciated.

Regards,
Graham
-- 
-----------------------------------------
minfrin@sharp.fm		"There's a moon
					over Bourbon Street
						tonight...