インフラエンジニアãŒSegmentation fault ã‚’ãªã‚“ã¨ã‹æ²»ã—ã¦ã¿ã‚‹
普段Webサーãƒã‚’é‹ç”¨ã—ã¦ã„ã¦ã€ã‚ã‚“ã©ãã•ã„トラブルã®ã²ã¨ã¤ã«ã€ŒSegmentation faultã€ãŒã‚ã‚Šã¾ã™ã€‚
ã‚れー?ãªã‚“ã‹500エラーãŒã§ã‚‹ãªãƒ¼ãªã‚“ã¦æ€ã£ã¦ãƒã‚°ã‚’見るã¨Segmentation faultã«ãªã£ã¦ã‚‹ã¨ãã¯æ»ã«ãŸããªã‚Šã¾ã™ã€‚
ãã‚‚ãã‚‚Segmentation faultã¯ãƒ¡ãƒ¢ãƒªä¸Šã«ã‚るデータã«å¯¾ã—ã¦ä¸æ£ãŒè¡Œã‚ã‚ŒãŸã¨ãã«èµ·ã“ã‚‹ã‚‚ã®ã§ã€
インフラエンジニアã«ã¨ã£ã¦ã¯ãªã‹ãªã‹æ‰‹ãŒã ã›ãªã„ã¨ã“ã‚ã§ã‚‚ã‚ã‚Šã¾ã™ã€‚
ãã‚Œã§ã‚‚ãªã‚“ã¨ã‹ã—ã¦æ²»ã•ãªã„ã¨ã„ã‘ãªã„ã‚ã‘ãªã®ã§
ã›ã‚ã¦ã©ã®ãƒ—ãƒã‚°ãƒ©ãƒ ãŒæ‚ªã•ã—ã¦ã‚‹ã‹ã©ã†ã‹ãらã„ã¯èª¿ã¹ä¸Šã’ã¦ã¿ã¾ã™ã€‚
apacheã§ã®ãƒã‚°
apache + mod_perl ã§ã®ç’°å¢ƒã§ã™ã€‚
ã“ã‚“ãªæ„Ÿã˜ã§ã‚¨ãƒ©ãƒ¼ãŒã§ã¾ã™ã€‚
#tail error_log [notice] child pid 26028 exit signal Segmentation fault (11) [notice] child pid 26029 exit signal Segmentation fault (11) [notice] child pid 26030 exit signal Segmentation fault (11) [notice] child pid 26031 exit signal Segmentation fault (11)
完全ã«æ»ã‚“ã§ã¾ã™ã€‚ã»ã‚“ã¨ã†ã«ã‚ã‚ŠãŒã¨ã†ã”ã–ã„ã¾ã—ãŸã€‚
coreã‚’ã¯ã‹ã›ã‚‹
Segmentation faultãŒã§ã¦ã‚‚ã“れ以上ã®æƒ…å ±ãŒãªã„ã®ã§coreファイルをåã‹ã›ã¦ãƒ‡ãƒãƒƒã‚°ã—ã¦ã„ãã¾ã™ã€‚
ulimitè¨å®š
ulimit -aを打ã£ã¦ã§ã‚‹çµæžœã§ã€core file sizeã®å€¤ãŒ0ã®å ´åˆã€ coreファイルã®å®¹é‡ãŒåˆ¶é™ã•ã‚Œã¦ã¾ã™ã€‚
$ ulimit -a core file size (blocks, -c) 0 data seg size (kbytes, -d) unlimited scheduling priority (-e) 0 file size (blocks, -f) unlimited pending signals (-i) 16249 max locked memory (kbytes, -l) 32 max memory size (kbytes, -m) unlimited open files (-n) 1024 pipe size (512 bytes, -p) 8 POSIX message queues (bytes, -q) 819200 real-time priority (-r) 0 stack size (kbytes, -s) 10240 cpu time (seconds, -t) unlimited max user processes (-u) unlimited virtual memory (kbytes, -v) unlimited file locks
ãªã®ã§ã€ulimitコマンドã§ã“ã®å€¤ã‚’変ãˆã¦ã‚„ã‚‹å¿…è¦ãŒã‚ã‚‹ã‚ã‘ã§ã™ãŒã€ulimitã¯ãƒ—ãƒã‚»ã‚¹æ¯Ž(pid毎)ã®å€¤ãªã®ã§ãƒã‚°ã‚ªãƒ•ã™ã‚‹ã¨å…ƒã«æˆ»ã£ã¦ã—ã¾ã„ã¾ã™ã€‚
値を変ãˆã‚‹ã«ã¯/etc/profileを書ãæ›ãˆã‚‹ã¨ç°¡å˜ãªã®ã§ã„ã¤ã‚‚ã“ã£ã¡ã§å¤‰ãˆã¦ã—ã¾ã„ã¾ã™ã€‚
$ diff /etc/profile.b /etc/profile 30c30 < # ulimit -S -c 0 > /dev/null 2>&1 --- > ulimit -c unlimited > /dev/null 2>&1 $
「-c unlimitedã€ã§ç„¡åˆ¶é™ã«
変更ã—ãŸã‚‰ä¸€åº¦ãƒã‚°ã‚¢ã‚¦ãƒˆâ†’ãƒã‚°ã‚¤ãƒ³ã—ã¾ã™ã€‚
$ ulimit -a core file size (blocks, -c) unlimited (ç•¥)
apacheã®è¨å®š
apacheã¯ä¸€è¡ŒåŠ ãˆã¦çµ‚了
CoreDumpDirectory /tmp
Coreファイルをåãå ´æ‰€ã¯é©å®œã€‚å†èµ·å‹•ã‚’忘れãšã«
Coreファイルを解æžã—ã¦ã¿ã‚‹
ã‚ã–ã¨ã‚¨ãƒ©ãƒ¼ã‚’出ã—ã€Segmentation faultãŒã§ã¦ã„ã‚Œã°ã€/tmpé…下ã«coreファイルãŒã§ãã¦ã„ã‚‹ã¯ãšã§ã™ã€‚
Coreファイルã®è§£æžã¯gdbコマンドを使用ã—ã¾ã™ã€‚
gdbコマンドã¯
gdb <commnd> -c <(core)file>
ã§ä½¿ç”¨ã—ã¾ã™ã€‚
ã¾ã実際ã«æ‰“ã£ã¦ã¿ã¾ã—ょã†ã€‚
今回ã¯apacheã§ã‚¨ãƒ©ãƒ¼ãŒã§ãŸã®ã§ä¸Šã®
#gdb /usr/local/apache2/bin/httpd -c /tmp/core.30864
ã“ã‚“ãªæ„Ÿã˜ã€‚
実際打ã¤ã¨
#gdb /usr/local/apache2/bin/httpd -c /tmp/core.30864 GNU gdb (GDB) Red Hat Enterprise Linux (7.0.1-23.el5_5.2) Copyright (C) 2009 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "i386-redhat-linux-gnu". For bug reporting instructions, please see: <http://www.gnu.org/software/gdb/bugs/>... Reading symbols from /usr/local/apache2/bin/httpd ...(no debugging symbols found)...done. Reading symbols from /lib/libm.so.6...(no debugging symbols found)...done. ......... ...... ... <ç•¥>
ã“ã‚“ãªæ„Ÿã˜ã§ãƒˆãƒ¬ãƒ¼ã‚¹ã—ã¦ã„ã£ã¦ã€‚。
<ç•¥> ... ...... ......... Reading symbols from /lib/libselinux.so.1...(no debugging symbols found)...done. Loaded symbols for /lib/libselinux.so.1 Reading symbols from /lib/libsepol.so.1...(no debugging symbols found)...done. Loaded symbols for /lib/libsepol.so.1 Core was generated by `/usr/local/apache2/bin/httpd '. Program terminated with signal 11, Segmentation fault. #0 0x0061faa4 in SSL_CTX_ctrl () from /lib/libssl.so.6 (gdb)
ã“ã‚“ãªæ„Ÿã˜ã§Segmentation faultã®ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¦ã€
(gdb)ã¨ã„ã†ãƒ—ãƒãƒ³ãƒ—トãŒè¿”ã‚Šã¾ã™ã€‚
gdbコマンドã¯é«˜åº¦ãªãƒ‡ãƒãƒƒã‚¬ã§ãƒ—ãƒã‚°ãƒ©ãƒ ãŒã§ãる人ã¯ã„ã‚ã„ã‚デãƒãƒƒã‚°ã§ãã‚‹ã®ã§ã™ãŒ
ã¨ã‚Šã‚ãˆãš
(gdb)where
ã¨æ‰“ã£ã¦ã¿ã¾ã—ょã†ã€‚è½ã¡ã¦ã‚‹ã¨ã“ã‚ãŒã‚ã‹ã‚Šã¾ã™ã€‚
ã“ã‚“ãªæ„Ÿã˜ã€‚
(gdb) where #0 0x0061faa4 in SSL_CTX_ctrl () from /lib/libssl.so.6 #1 0xb721f6f7 in XS_Crypt__SSLeay__CTX_new (cv=0xb92a828) at SSLeay.xs:133 #2 0x0810ed51 in Perl_pp_entersub () #3 0x08108ede in Perl_runops_standard () #4 0x080bdfcb in Perl_call_sv () #5 0x08069414 in perl_call_handler () #6 0x08069b29 in perl_run_stacked_handlers () #7 0x0806b071 in perl_handler () #8 0x0808b7cb in ap_invoke_handler () #9 0x080a0cee in ?? () #10 0x0ae30fc4 in ?? () #11 0x08179e99 in ?? () #12 0xbff5f558 in ?? () #13 0x080add23 in ap_ctx_new () #14 0x080a0e4b in ap_process_request () #15 0x080963ce in ?? () #16 0x0ae30fc4 in ?? () #17 0x00000004 in ?? () #18 0x0ae30fc4 in ?? () #19 0xbff5f864 in ?? () #20 0x00000004 in ?? () #21 0x4cb7f3d2 in ?? () #22 0x00000000 in ?? () (gdb)
ã§ã¾ãã“ã“ã‹ã‚‰ã¡ã‚‡ã£ã¨ã‚ã‹ã‚Šãã„ã‚“ã§ã™ãŒã€#0ã¨#1ã¿ã‚‹ã¨
#0 0x0061faa4 in SSL_CTX_ctrl () from /lib/libssl.so.6 #1 0xb721f6f7 in XS_Crypt__SSLeay__CTX_new (cv=0xb92a828) at SSLeay.xs:133
ã¨ãªã£ã¦ã„ã¦ã€ãªã‚“ã‹SSLeay.xsã§è½ã¡ã¦ã‚‹ã£ã½ã„ã£ã¦ã‚ã‹ã‚Šã¾ã™ã€‚
xsã£ã¦ã®ã¯PerlãŒCを使ã†ãŸã‚ã®ãƒ¢ã‚¸ãƒ¥ãƒ¼ãƒ«ãªã‚“ã§ã€ãªã‚“ã‹ã“ã„ã¤ãŒçŠ¯äººã£ã½ã„。
ã¦ãªå…·åˆã§ãªã‚“ã¨ã‹æ‚ªã•ã—ã¦ã‚‹ãƒ—ãƒã‚°ãƒ©ãƒ ã¯è¦‹ã¤ã‘ã‚‹ã“ã¨ãŒã§ãã¾ã—ãŸã€‚
ã‚ã¨ã¯
ã»ã‚“ã¨ã¯ã“ã“ã¾ã§ããŸã‚‰ã€ã‚¹ãƒ¼ãƒ‘ーデãƒãƒƒã‚°ã‚¿ã‚¤ãƒ ãªã‚“ã ã‘ã©ã€
æ£ç›´ãƒ—ãƒã‚°ãƒ©ãƒžãƒ¼ã˜ã‚ƒãªã„ã¨åŽ³ã—ã„ã—ã€ã¾ãšã¯çŠ¯äººãƒ—ãƒã‚°ãƒ©ãƒ をアップデートã—ãŸã‚Šã€
リコンパイルã—ã¦ã¿ã‚‹ã¨ã„ã„ã¨æ€ã†ã€‚
ã¡ãªã¿ã«â†‘ã§ç´¹ä»‹ã—ãŸã‚¨ãƒ©ãƒ¼ã¯cpanã‹ã‚‰æœ€æ–°ã®Crypt::SSLeayã‚’æŒã£ã¦ãã¦å…¥ã‚ŒãªãŠã—ãŸã‚‰ã‚ã£ã•ã‚Šç›´ã‚Šã¾ã—ãŸã€‚
例外ã¨ã—ã¦ã€ã™ã”ã„調ã¹ãŸã‘ã©ã¾ã£ãŸãåŽŸå› ãŒã‚ã‹ã‚‰ãªãã¦
ã¨ã‚Šã‚ãˆãšã‚µãƒ¼ãƒã‚’å†èµ·å‹•ã—ãŸã‚‰ã‚¨ãƒ©ãƒ¼ãŒè§£æ¶ˆã—ãŸã£ã¦ã“ã¨ã‚‚ã‚ã‚Šã¾ã—ãŸã€‚
ã¾ããã†ã„ã†æ—¥ã‚‚ã‚るよã。
