Add

Sunday, 1 December 2013

Strace: Practical Troubleshooting

strace: practical troubleshooting

Debugging / diagnostic tool widely used by DevOps team, and its pocket knife for administrators in problem solving where they don’t have any access to source code, directly examining system and system calls at kernel level for any particular process just by using process ID and getting output to particular file with strace is art of sysadmins.


Once process is attached it will display all the system calls and signals resulting from that process, simple to use like bash commands.


NOTE: System calls – In Unix shell act as interface between user and kernel, similarly kernel offers interface for any executing programs to use hardware resource thus creating a abstract layer between application programs and hardware. Ex:  read() write () open() connect() .. etc


Advantage – security, portability, uniform high level programming language for developers.     


How does it really help in troubleshooting??

·      Application fails at start itself – hence no logs available troubleshoot.

·      To see how much of your hardware resource used by process.

·      Debugging output – to know what exactly that application is doing at system level.

·      Unresponsive application ( job / script ).

·      Extract the data from process.

 


Installation:

#yum install strace                   [ Cent OS / Fedora / Redhat ]

#apt-get install strace              [ debian OS – Ubuntu ]


Command usage:

strace                    <<  options  >>              <<  arguments  >>                   << PURPOSE >>
                              -p                                     << process PID >>                  Attaching process
                              -o                                     << output file >>                     get output in a file
                              -c                                                                                      Summary and statistics
-f F                                                                                    fallow forks
                              -e                 << read, access, connect etc.>>                 capture only specific system calls



Steps how to attach process to strace and get output in a file.

STEP 1: Collecting the process ID<< parent or child >>

# sudo ps -ef | grep << process_name >>




STEP 2: Attaching the process to strace command and writing output in file.
         
         # strace -o /tmp/strace.txt -p pid
STEP 3: understanding the strace output.

# grep or tail -f  /tmp/strace.txt for any particular pattern.




 Using Strace : While restarting apache-httpd process.


#[root@LAMPLAB ~]# strace -Ff -o output.txt -e open /etc/init.d/httpd restart
#
#finding out the log files used by apache httpd process
#
#cat output.txt | grep 'log'
[pid 13595] open("/etc/httpd/modules/mod_log_config.so", O_RDONLY) = 4
[pid 13595] open("/etc/httpd/modules/mod_logio.so", O_RDONLY) = 4
[pid 13595] open("/etc/httpd/logs/error_log", O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE, 0666) = 10
[pid 13595] open("/etc/httpd/logs/ssl_error_log", O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE, 0666) = 11
[pid 13595] open("/etc/httpd/logs/access_log", O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE, 0666) = 12
[pid 13595] open("/etc/httpd/logs/cm4msaa7.com", O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE, 0666) = 13
[pid 13595] open("/etc/httpd/logs/ssl_access_log", O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE, 0666) = 14
[pid 13595] open("/etc/httpd/logs/ssl_request_log", O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE, 0666) = 15
[pid 13595] open("/etc/httpd/modules/mod_log_config.so", O_RDONLY) = 9
[pid 13595] open("/etc/httpd/modules/mod_logio.so", O_RDONLY) = 9
[pid 13596] open("/etc/httpd/logs/error_log", O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE, 0666) = 10
[pid 13596] open("/etc/httpd/logs/ssl_error_log", O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE, 0666) = 11
open("/etc/httpd/logs/access_log", O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE, 0666) = 12
open("/etc/httpd/logs/cm4msaa7.com", O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE, 0666) = 13
open("/etc/httpd/logs/ssl_access_log", O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE, 0666) = 14
open("/etc/httpd/logs/ssl_request_log", O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE, 0666) = 15

#In all cases where a system call fails, strace will return a line with “= -1” in the output,

#[root@LAMPLAB ~]#cat output.txt | grep '= -1'
[pid 13748] open("/etc/selinux/config", O_RDONLY|O_LARGEFILE) = -1 ENOENT (No such file or directory)
[pid 13748] open("/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE/tls/i686/sse2/libperl.so", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid 13748] open("/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE/tls/i686/libperl.so", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid 13748] open("/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE/tls/sse2/libperl.so", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid 13748] open("/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE/tls/libperl.so", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid 13748] open("/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE/i686/sse2/libperl.so", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid 13748] open("/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE/i686/libperl.so", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid 13748] open("/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE/sse2/libperl.so", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid 13748] open("/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE/libnsl.so.1", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid 13748] open("/usr/lib/perl5/5.8.8/i386-linux-thread-multi/CORE/libutil.so.1", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid 13748] open("/etc/gai.conf", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid 13748] open("/etc/httpd/logs/error_log", O_WRONLY|O_CREAT|O_APPEND|O_LARGEFILE, 0666) = -1 EACCES (Permission denied)


 While opening a file using cat.


[root@LAMPLAB ~]# strace -fF -o helloout.txt cat hello.txt
Hi Hello
Welcome to strace.
Enjoy the course, Thanks all.
[root@LAMPLAB ~]# 
[root@LAMPLAB ~]# 
[root@LAMPLAB ~]# cat helloout.txt
2359  execve("/bin/cat", ["cat", "hello.txt"], [/* 23 vars */]) = 0
2359  brk(0)                            = 0x8262000
2359  mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb77a7000
2359  access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or directory)
2359  open("/etc/ld.so.cache", O_RDONLY) = 3
2359  fstat64(3, {st_mode=S_IFREG|0644, st_size=25975, ...}) = 0
2359  mmap2(NULL, 25975, PROT_READ, MAP_PRIVATE, 3, 0) = 0xb77a0000
2359  close(3)                          = 0
2359  open("/lib/libc.so.6", O_RDONLY)  = 3
2359  read(3, "\177ELF\1\1\1\3\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0@n\1\0004\0\0\0"..., 512) = 512
2359  fstat64(3, {st_mode=S_IFREG|0755, st_size=1902708, ...}) = 0
2359  mmap2(NULL, 1665416, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x20c000
2359  mprotect(0x39c000, 4096, PROT_NONE) = 0
2359  mmap2(0x39d000, 12288, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x190) = 0x39d000
2359  mmap2(0x3a0000, 10632, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x3a0000
2359  close(3)                          = 0
2359  mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb779f000
2359  set_thread_area({entry_number:-1 -> 6, base_addr:0xb779f6c0, limit:1048575, seg_32bit:1, contents:0, read_exec_only:0, limit_in_pages:1, seg_not_present:0, useable:1}) = 0
2359  mprotect(0x39d000, 8192, PROT_READ) = 0
2359  mprotect(0xde5000, 4096, PROT_READ) = 0
2359  munmap(0xb77a0000, 25975)         = 0
2359  brk(0)                            = 0x8262000
2359  brk(0x8283000)                    = 0x8283000
2359  open("/usr/lib/locale/locale-archive", O_RDONLY|O_LARGEFILE) = 3
2359  fstat64(3, {st_mode=S_IFREG|0644, st_size=99158544, ...}) = 0
2359  mmap2(NULL, 2097152, PROT_READ, MAP_PRIVATE, 3, 0) = 0xb759f000
2359  close(3)                          = 0
2359  fstat64(1, {st_mode=S_IFCHR|0620, st_rdev=makedev(136, 4), ...}) = 0
2359  open("hello.txt", O_RDONLY|O_LARGEFILE) = 3
2359  fstat64(3, {st_mode=S_IFREG|0644, st_size=58, ...}) = 0
2359  read(3, "Hi Hello\nWelcome to strace.\nEnjo"..., 32768) = 58
2359  write(1, "Hi Hello\nWelcome to strace.\nEnjo"..., 58) = 58
2359  read(3, "", 32768)                = 0
2359  close(3)                          = 0
2359  close(1)                          = 0
2359  close(2)                          = 0
2359  exit_group(0)                     = ?


This example shows summary report for cat process

[root@LAMPLAB ~]#strace -c cat hello.txt
Hi Hello
Welcome to strace.
Enjoy the course, Thanks all.
% time     seconds  usecs/call     calls    errors syscall
------ ----------- ----------- --------- --------- ----------------
 30.73    0.003000        3000         1           execve
 26.88    0.002624         375         7           mmap2
 15.99    0.001561         390         4           open
 10.24    0.001000         333         3           brk
 10.23    0.000999         200         5           fstat64
  5.92    0.000578         578         1           set_thread_area
  0.00    0.000000           0         3           read
  0.00    0.000000           0         1           write
  0.00    0.000000           0         6           close
  0.00    0.000000           0         1         1 access
  0.00    0.000000           0         1           munmap
  0.00    0.000000           0         3           mprotect
------ ----------- ----------- --------- --------- ----------------
100.00    0.009762                    36         1 total




Posted by at No comments:

Wednesday, 27 November 2013

Time to edit /etc/hosts file

Unlocking /etc/hosts file

Looking inside of /etc/hosts  - It’s simply a list of names mapped to IP address of every host on the network in order to provide name resolution( name resolution - .
If you have a small host network, easiest way to provide name resolution is by /etc/hosts, which contains the name and address information for important hosts on the local network. This is will be useful when DNS is not running, hosts file has power to override DNS. 

Whenever new host added trick was keeping all those Hosts files up to date, its triggered invention of (BIND) Berkeley Internet Name Domain Server - (DNS) Domain Naming Service to solve this problem

EXAMPLE :
$ vim /etc/hosts
      
# IP_address         canonical_hostname                 [aliases...]

127.0.0.1               localhost.localdomain               localhost
192.168.1.10         bat.mydomain.org                      bat
192.168.1.13         cat.mydomain.org                      cat
146.82.138.7         master.mydomain.org                master

This enables users to access a host by using the alias as an alternative name, Now, you can test "ping bat" or "ping cat.mydomain.org", any of the hosts inside using names instead of its IP address.

Operating System
Location of Hosts File
Windows 9x/Me
c:\windows\hosts
Windows NT/2000
c:\winnt\system32\drivers\etc\hosts
Windows XP/Vista/2003/2008
c:\windows\system32\drivers\etc\hosts
Unix/Linux
/etc/hosts
Posted by at No comments:

Tuesday, 26 November 2013

HOSTNAME - Secrete Key of Linux

Setting up HOSTNAME in Linux

In any network HOSTNAME represents a system for various purpose from application end to mail, web and DB server etc, anything messed up in HOSTNAME service will get disrupted. Learning to re(set) the HOSTNAME very essential key step of any initial troubleshooting or fixing issue.

You should fallow naming conventions while choosing a HOSTNAME in any production site – something more meaningful geographical locations, famous gods, Highest mountain ranges. I would say it like MyProdApp1.shiva.com, MyDbStage.krishna.com, …. So would be easier for anyone to remember.

Only Constraints are -
·      It cannot be longer than 64 characters
·      It can only contain letters, numbers, and dashes

Check your current hostname by using cmd.

# hostname
ProdApp1

FQDN – Fully Qualified Domain Name nothing but your hostname + domain (something.org or anything.com) combined together. 
         
# hostname –f
ProdApp1.himalayan.com

( hostname = ProdApp1  and domainname = himalayan.com )

Five basic Step to get your hostname working fine.
         
STEP1:  
Setting the Hostname Using hostname command

# hostaname –v ProdApp2
Setting hostname to ProdApp2
         
         
STEP2:
Modifying the old hostname

# vi /etc/hostname                              (Debian / Ubuntu)
ProdApp2

Debian has an init script, /etc/init.d/hostname.sh which is called at boot time and sets the hostname what is given in /etc/hostname.
or
sudo service hostname start              
To change the hostname, place only the unqualified hostname in /etc/hostname and run sudo /etc/init.d/hostname.sh

# vi /etc/HOSTNAME                        (SUSE)
ProdApp2

Or

Edit line HOSTNAME="”

# vi /etc/sysconfig/network               (CentOS /RedHat/ Fedora)
         
NETWORKING=yes
HOSTNAME="ProdApp2 "
GATEWAY="192.168.10.10"
GATEWAYDEV="eth0"
FORWARD_IPV4="yes"

STEP 3:
Make new entry /etc/hosts for FQDN resolution.

192.168.10.10                 ProdApp2.himalayan.com                ProdApp2

STEP 4:
Now job would be setting it permanent without any reboot (You won’t get a downtime for just resetting HOSTNAME in Production sites)

#service network restart

Or

#/etc/init.d/network restart

STEP 5:
Checking hostname is set to correct name by using
# hostname –f
ProdApp2.himalayan.com


That’s it – you are done! – Not a big task, but its key task for sure, In STEP 1 command will change the HOSTNAME to new value temporarily.
For Permanent fix, change the configuration file as discussed in STEP 2 & 3 and next time it boots it will read the those configuration file for setting hostname.



Posted by at No comments:

Wednesday, 6 November 2013

ESSENTIALS OF APACHE WEB SERVER


ESSENTIALS OF APACHE WEB SERVER

Apache Web Server Installation Notes
Install command
Install httpd service boot script start at  boot time
Starting  httpd
Fedora / RHEL / Cent OS
# yum install httpd
# chkconfig httpd on

# /etc/init.d/httpd start
Debian Linux
# apt-get install apache2
# update-rc.d apache2 defaults

# /etc/init.d/apache2 start
Open SUSE
# zypper in apache2

# yast2 -i apache2
# chkconfig --add apache2

# /etc/init.d/apache2 start


Document root location and configuration scripts
Document root of the default web site
httpd.conf location
Fedora / RHEL / Cent OS
# /var/www/html
# /etc/httpd/conf/httpd.conf
Debian Linux
# /var/www/
# /etc/apache2/apache2.conf

# /etc/apache2/ports.conf
Open SUSE
# cd /srv/www/htdocs/
# /etc/apache2/httpd.conf


Compiling and Installing

Compiling and Installing
Download
# lynx http://httpd.apache.org/download.cgi
Extract
# gzip -d  httpd-2.4.6.tar.gz
# tar xvf  httpd-2.4.6.tar.gz
# cd  httpd-2.4.6
Configure
# ./configure --prefix= /usr/local/apache2/
Compile
# make
Install
# make install
Customize
# vi /usr/local/apache2/conf/httpd.conf
Test
#  /usr/local/apache2/bin/apachectl -k start




Other essential details of Apache
server log
/etc/httpd/logs                     à( symbolic link)

/var/log/httpd
server modules
/etc/httpd/modules             à( symbolic link)

/usr/lib/httpd/modules
server process ID
/var/run                                 à( symbolic link)
           
/var/run/httpd.pid


Posted by at No comments:
Subscribe to: Posts (Atom)