1 Reply Latest reply on Sep 3, 2008 9:32 AM by sannegrinovero

    AprLifecycleListener + SSL painfully slow to startup

    sannegrinovero
    sannegrinovero Sep 3, 2008 7:34 AM

      Hello all,
      I am configuring the

      <Listener lassName="org.apache.catalina.core.AprLifecycleListener" />

      on JBoss 4.2.3 jdk6, RedHat Enterprise Linux 5.2

      The native connector is working well, my problem is that I'm doing some experiments/development and need to restart the server often.
      The first startup of the day is done in about 20 seconds, second 1 minute, third 4 minutes and then it goes up to 40minutes, 3hours...
      When i disable SSL it is fast as usual.
      My guess is that it has something to do with the random pool for SSL;
      on the documentation for SSL at http://www.jboss.org/file-access/default/members/jbossweb/freezone/docs/2.1.0/ssl-howto.html
      I've found additional options (not mentioned at the Apr configuration page http://www.jboss.org/file-access/default/members/jbossweb/freezone/docs/2.1.0/apr.html) but these don't appear to be supported (any more?) about using an option as 
      SSLRandomSeed="somedevice"


      The howto mentions the possibility to set this option to "/dev/urandom" to help startup times during development, however during JBoss startup the option isn't regonized (I get a warning logged) and the startup is still very slow.
      Has this setting being removed? The docs should be updated. is there a good alternative?

      thanks in advance for helping,
      Sanne

      • 2573 Views
      • Tags:
        • 1. Re: AprLifecycleListener + SSL painfully slow to startup
          sannegrinovero
          sannegrinovero Sep 3, 2008 9:32 AM (in response to sannegrinovero)

          sorry, I forgot to paste the interesting part of my startup log:

          [com.arjuna.ats.jbossatx.jta.TransactionManagerService] Binding TransactionManager JNDI Reference
[org.apache.catalina.startup.Embedded] Catalina naming disabled
[org.apache.commons.digester.Digester] [SetPropertiesRule]{Server/Listener} Setting property 'SSLRandomSeed' to '/dev/urandom' did not find a matching property.
[org.apache.catalina.core.AprLifecycleListener] Loaded Apache Tomcat Native library 1.1.13.
[org.apache.catalina.core.AprLifecycleListener] APR capabilities: IPv6 [true], sendfile [true], accept filters [false], random [true].


            • Actions