When your Apache server crashes and refuses to restart, with error messages mentioning "failed to create semaphore" or "Cannot allocate memory," you're likely dealing with orphaned semaphore issues. These synchronization primitives, meant to coordinate processes, sometimes outlive their usefulness and become system obstacles.
Semaphores in Linux are counters used for process synchronization, particularly important for:
- Managing concurrent connections in Apache's prefork or worker MPM
- Coordinating access to shared resources like scoreboards
- Preventing race conditions during configuration reloads
The www-data user's semaphores can become orphaned when:
# Common scenarios:
1. Apache crashes without proper cleanup
2. Forceful termination via kill -9
3. Server abruptly loses power
4. Shared memory limits are reachedUse this diagnostic sequence to inspect semaphore status:
# List all semaphores in the system
ipcs -s
# Filter for Apache-related semaphores
ipcs -s | grep www-data
# Check current semaphore limits
cat /proc/sys/kernel/sem
The hosting provider's solution works but is aggressive. These alternatives offer more control:
# Targeted removal (safer)
for semid in $(ipcs -s | grep www-data | awk '{print $2}'); do
ipcrm sem $semid
done
# Alternative using sysvipc-tools (Debian/Ubuntu)
apt-get install sysvipc-utils
sems www-dataImplement these measures in your httpd.conf or apache2.conf:
# Adjust shared memory parameters
SysVSemaphoreMax 512
SysVSharedMemorySize 1048576
# Configure proper shutdown handling
EnableMMAP off
EnableSendfile off
# Monitor with this cron job (daily)
0 3 * * * /usr/sbin/apache2ctl graceful && ipcs -s | grep www-data | wc -l >> /var/log/apache_semaphores.logApache uses semaphores primarily for:
1. prefork MPM process synchronization
2. mod_rewrite shared maps
3. mod_session configurations
4. scoreboard maintenance in worker/event MPMsWhen these semaphores aren't properly released during shutdown, they accumulate in the kernel's IPC namespace until manual intervention or system reboot.
When my Apache server suddenly refused to restart, I discovered the culprit was orphaned semaphores - a classic case of inter-process communication (IPC) resources gone rogue. Here's what I learned about these system-level synchronization mechanisms and how they can impact web servers.
Semaphores are kernel-managed counters that coordinate access to shared resources between processes. They work like:
// Pseudo-code of semaphore operation
if (semaphore > 0) {
semaphore--;
// Critical section
} else {
// Wait until semaphore increases
}In Apache's case, worker processes use semaphores to coordinate access to shared memory segments during:
- Scoreboard maintenance
- Module communication
- Connection throttling
The hosting company's solution revealed the core issue - improperly released semaphores. This typically happens when:
- Apache crashes without cleanup
- kill -9 terminates processes abruptly
- Configuration changes aren't properly applied
The diagnostic command chain:
ipcs -s | grep www-datashows all semaphores owned by Apache's worker user, while:
ipcrm sem [id]removes the specified semaphore.
Instead of manual cleanup, consider these preventive measures:
# Sample cron job for semaphore cleanup
0 * * * * /usr/bin/ipcrm sem $(/usr/bin/ipcs -s | grep www-data | awk '{print \$2}')For systemd-based systems, add to your Apache service unit:
[Service]
ExecStopPost=/usr/bin/ipcrm sem $(/usr/bin/ipcs -s | grep www-data | awk '{print \$2}')Enable mod_status to monitor semaphore usage:
<Location /server-status>
SetHandler server-status
Require host localhost
</Location>Combine with shared memory monitoring:
watch -n 1 "ipcs -m -s -p | grep -E 'www-data|apache'"Adjust these Apache directives in httpd.conf:
# Reduce semaphore lifetime
ScoreBoardFile /var/run/apache2/scoreboard
SharedScoreboard off
# Limit worker lifetime
MaxConnectionsPerChild 10000Remember that configuration changes require full service restart, not just reload:
systemctl stop apache2
ipcrm -a
systemctl start apache2