One of my (many) pet peeves are shell scripts that fail to delete any temporary files they use. Included in this pet peeve are shell scripts that create more temporary files than they absolutely need, in most cases the number is 0 but there are a few cases where you really do need a temporary file but if it is temproary make sure you always delete the file.
The trick here is to use the EXIT trap handler to delete the file. That way if your script is killed (unless it is kill with SIGKILL) it will still clean up. Since you will be using mktemp(1) to create your temporary file and you want to minimize any race condition where the file could be left around you need to do (korn shell):
trap '${TMPFILE:+rm ${TMPFILE}}' EXIT TMPFILE=$(mktemp /tmp/$0.temp.XXXXXX)
if further down the script you delete or rename the file all you have to do is unset TMPFILE eg:
mv $TMPFILE /etc/foo && unset TMPFILE
If you share a file system using the CIFS server (not SAMBA) and create a file in that file system using Windows XP the file ends up with these strange permissions and an ACL like this:
: pearson FSS 12 $; ls -vd Bad
d---------+ 2 cjg staff 2 Nov 13 17:11 Bad
0:user:cjg:list_directory/read_data/add_file/write_data/add_subdirectory
/append_data/read_xattr/write_xattr/execute/delete_child
/read_attributes/write_attributes/delete/read_acl/write_acl
/write_owner/synchronize:allow
1:group:2147483648:list_directory/read_data/add_file/write_data
/add_subdirectory/append_data/read_xattr/write_xattr/execute
/delete_child/read_attributes/write_attributes/delete/read_acl
/write_acl/write_owner/synchronize:allow
: pearson FSS 13 $;
The first thing that riles UNIX some users is the lack of any file permissions, although things seem to work fine. The strange group ACL is for the local WINDOWS SYSTEM group. However the odd thing is for me it renders iTunes on the Windows system unable to see the files that it has created.
The solution is to add a default ACL to the root of the file system (well to every object in the file system if the file system is not new) that looks like this:
A+owner@:full_set:fd:allow,everyone@:read_set/execute:fd:allow
So this has the rather pleasant side effect of setting the UNIX permissions to something more recognisable:
: pearson FSS 20 $; ls -vd Good
drwxr-xr-x+ 2 cjg staff 2 Nov 13 18:16 Good
0:owner@:list_directory/read_data/add_file/write_data/add_subdirectory
/append_data/read_xattr/write_xattr/execute/delete_child
/read_attributes/write_attributes/delete/read_acl/write_acl
/write_owner/synchronize:file_inherit/dir_inherit/inherited:allow
1:everyone@:list_directory/read_data/read_xattr/execute/read_attributes
/read_acl:file_inherit/dir_inherit/inherited:allow
: pearson FSS 21 $; and the even more pleasant side effect of making iTunes works again!
I've said many times that dtrace is not just a wonderful tool for developers and performance gurus. The Kings of Computing, which are of course System Admins, also find it really useful.
There is an ancient version of make called Parallel make that occasionally suffers from a bug (1223984) where it gets into a loop like this:
waitid(P_ALL, 0, 0x08047270, WEXITED|WTRAPPED) Err#10 ECHILD alarm(0) = 30 alarm(30) = 0 waitid(P_ALL, 0, 0x08047270, WEXITED|WTRAPPED) Err#10 ECHILD alarm(0) = 30 alarm(30) = 0 waitid(P_ALL, 0, 0x08047270, WEXITED|WTRAPPED) Err#10 ECHILD
This will then consume a CPU and the users CPU shares. The application is never going to be fixed so the normal advice is not to use it. However since it can be NFS mounted from anywhere I can't reliably delete all copies of it so occasionally we will see run away processes on our build server.
It turns out this is a snip to fix with dtrace. Simply look for cases where the wait system call returns an error and errno is set to ECHILD (10) and if that happens 10 times in a row for the same process and that process does not call fork then stop the process.
The script is simple enough for me to just do it on the command line:
# dtrace -wn 'syscall::waitsys:return / arg1 <= 0 &&
execname == "make.bin" && errno == 10 && waitcount[pid]++ > 20 / {
stop();
printf("uid %d pid %d", uid, pid) }
syscall::forksys:return / arg1 > 0 / { waitcount[pid] = 0 }'
dtrace: description 'syscall::waitsys:return ' matched 2 probes
dtrace: allowing destructive actions
CPU ID FUNCTION:NAME
2 20588 waitsys:return uid 36580 pid 29252
3 20588 waitsys:return uid 36580 pid 2522
5 20588 waitsys:return uid 36580 pid 28663
7 20588 waitsys:return uid 36580 pid 29884
10 20588 waitsys:return uid 36580 pid 941
15 20588 waitsys:return uid 36580 pid 1098
This was way easier then messing around with prstat, truss and pstop!
At the request of the users the access hours for Sun Ray users in the house have been relaxed so that on Friday and Saturday nights the Sun Ray's in bedrooms can be used later.
This required that the access hour script be updated to understand the day of the week and hence the access_hour file also is updated in an incompatible way. There is now an extra column representing the days of the week when the rule is applied as the first column after the name of the user. The day of the week field will take a wild card '*' or ranges (1-5) for Monday to Friday, or lists (1,3,5). Sunday is day 0 as any self respecting geek would have it.
The new access_file I have looks something like this:
user0:0-4:0001:2300:P8.00144f7dc383
user2:0-4:0630:2300
user3:0-4:0630:2230
user4:0-4:0630:2100
user4:5-6:0630:2200
The script is still here: http://blogs.sun.com/chrisg/resource/check_access_hours
Since the "nevada" builds of Solaris next are due to end soon and for some time the upgrade of my home server has involved more than a little bit of TLC to get it to work I will be moving to an OpenSolaris build just as soon as I can.
However before I can do this I need to make sure I have all thesoftware to provide home service. This is really a note to myself to I don't forget anything.
Exim Mail Transfer Agent (MTA). Since I am using certain encryption routines, virus detection and spamassassin I was unable to use the standard MTA, sendmail, when the system was originaly built and have been using exim, from blastwave. I hope to build and use exim without getting all the cruft that comes from the Blastwave packaged. So far this looks like it will be simple as OpenSolaris now has OpenSSL.
An imapd. Currently I have a blastwave version but again I intend to build this from scratch again the addition of OpenSSL and libcrypto should make this easy.
Clamav. To protect any Windows systems and to generally not pass on viri to others clamav has been scanning all incoming email. Again I will build this from scratch as I already do.
Spamassassin. Again I already build this for nevada so building it for OpenSolaris will be easy.
Ddclient. Having dynamic DNS allows me to login remotely and read email.
Squeezecenter. This is a big issue and in the past has proved hard to get built thanks to all the perl dependacies. It is for that reason I will continue to run it in a zone so that I don't have to trash the main system. Clearly with all my digital music loaded into the squeezecentre software this has to work.
I'm going to see if I can jump through the legal hoops that will allow me to contribute the builds to the contrib repository via Source Juicer. However as this is my spare time I don't know whether the legal reviews will be funded.
Due to the way OpenSolaris is delivered I also need to be more careful about what I install. rather than being able to choose everything. First I need my list from my laptop. Then in addtion to that I'll need
Samba - pkg:/SUNWsmba
cups - pkg:/SUNWcups
OpenSSL - pkg:/SUNWopenssl
Oh and I'll need the Sun Ray server software.
I've finally worked out how to drive purple-url-handler. Strictly John worked it out, so I will stand on his shoulders, but for some reason it would not work for me and I now know why and have a workaround.
First you need an XMPP URI on a web page. Some thing like:
xmpp:chrisg_fans@muc.im.sun.com?join
will when clicked in a browser that has the right helper, something OpenSolaris has had for some time, will take your IM client to that room. However with pidgin that is only the case if that room is available in the first XMPP server listed in your list of accounts. So given that this room is on Sun's IM server with the list of accounts looking like this:
It
will try and connect to the first XMPP server listed, which is google
and hence fail. Changing the order to be:
and
then logging in and out and now the link will work. You can drag and
drip the entries in pidgin.
Today I took the plunge and moved from working on our Nevada based Sun Ray Servers to one running OpenSolaris. So that I could get the full OpenSolaris look and feel I first purged my home directory of a number of configuration files and directories using a script like1 this:
#!/bin/ksh -p TARGET=b4OpenSolaris test -d $HOME/$TARGET || mkdir $HOME/$TARGET mv $HOME/.ICEauthority $HOME/$TARGET mv $HOME/.cache $HOME/$TARGET mv $HOME/.chewing $HOME/$TARGET mv $HOME/.config $HOME/$TARGET mv $HOME/.dbus $HOME/$TARGET mv $HOME/.dmrc $HOME/$TARGET mv $HOME/.gconf $HOME/$TARGET mv $HOME/.gconfd $HOME/$TARGET mv $HOME/.gksu.lock $HOME/$TARGET mv $HOME/.gnome2 $HOME/$TARGET mv $HOME/.gnome2_private $HOME/$TARGET mv $HOME/.gstreamer-0.10 $HOME/$TARGET mv $HOME/.gtk-bookmarks $HOME/$TARGET mv $HOME/.iiim $HOME/$TARGET mv $HOME/.local $HOME/$TARGET mv $HOME/.nautilus $HOME/$TARGET mv $HOME/.printer-groups.xml $HOME/$TARGET mv $HOME/.rnd $HOME/$TARGET mv $HOME/.sunstudio $HOME/$TARGET mv $HOME/.sunw $HOME/$TARGET mv $HOME/.updatemanager $HOME/$TARGET mv $HOME/.xesam $HOME/$TARGET mv $HOME/.xsession-errors $HOME/$TARGET
I generated the list by installing OpenSolaris in a VirtualBox and then logging in and doing a bit of browsing and general usage and then seeing was was created. Additionally “.mozilla” was created but I chose to retain that so that I can keep all the history that is in my browser.
Once logged in I have removed the update-manager icon as I am not the administrator. I have also removed the power notification and network monitor as they provide no useful data on a Sun Ray server.
Using “System->Preferences->Startup Applications” I unchecked the codeina update notifier and added my script for updating my IM status.
So far so good but it is taking a while to get used to the menu being a the top and the window list at the bottom of the screen.
1Like as in similar to and not this exact script as mine had my home directory hard coded into it.
Some of the most common failures that result in customer calls are misuses of the memory allocation routines, malloc, calloc, realloc, valloc, memalign and free. There are many ways in which you can misuse these routines and the data that they return and the resulting failures often occur within the routines even though the problem is with the calling program.
I'm not going to discuss here all the ways you can abuse these routines but look at a particular type abuse. The double free. When you allocate memory using these routines it is your responsibility to free it again so that the memory does not “leak”. However you must only free the memory once. Freeing it more than once is a bug and the results of that are undefined.
This very simple code has a double free:
#include <stdlib.h>
void
doit(int n, char *x)
{
if (n-- == 0)
free(x);
else
doit(n,x);
}
int
main(int argc, char **argv)
{
char *x;
char *y;
x = malloc(100000);
doit(3, x);
doit(10, x);
}and if you compile and run that program all appears well;
However a more realistic program could go on to fail in interesting ways leaving you with the difficult task of finding the culprit. It is for that reason the libumem has good checking for double frees:
: exdev.eu FSS 26 $; LD_PRELOAD=libumem.so.1 /home/cg13442/lang/c/double_free Abort(coredump) : exdev.eu FSS 27 $; mdb core Loading modules: [ libumem.so.1 libc.so.1 ld.so.1 ] > ::status debugging core file of double_free (64-bit) from exdev file: /home/cg13442/lang/c/double_free initial argv: /home/cg13442/lang/c/double_free threading model: native threads status: process terminated by SIGABRT (Abort), pid=18108 uid=14442 code=-1 > ::umem_status Status: ready and active Concurrency: 16 Logs: (inactive) Message buffer: free(e53650): double-free or invalid buffer stack trace: libumem.so.1'umem_err_recoverable+0xa6 libumem.so.1'process_free+0x17e libumem.so.1'free+0x16 double_free'doit+0x3a double_free'doit+0x4d double_free'doit+0x4d double_free'doit+0x4d double_free'doit+0x4d double_free'doit+0x4d double_free'doit+0x4d double_free'doit+0x4d double_free'doit+0x4d double_free'doit+0x4d double_free'doit+0x4d double_free'main+0x100 double_free'_start+0x6c >
Good though this is there are situations when libumem is not used and others where it can't be used1. In those cases it is useful to be able to use dtrace to do this and any way it is always nice to have more than one arrow in your quiver:
: exdev.eu FSS 54 $; me/cg13442/lang/c/double_free 2> /dev/null <
/usr/sbin/dtrace -qs doublefree.d -c /home/cg13442/lang/c/double_free 2> /dev/null
Hit Control-C to stop tracing
double free?
Address: 0xe53650
Previous free at: 2009 Jun 23 12:23:22, LWP -1
This free at: 2009 Jun 23 12:23:22, LWP -1
Frees 42663 nsec apart
Allocated 64474 nsec ago by LWP -1
libumem.so.1`free
double_free`doit+0x3a
double_free`doit+0x4d
double_free`doit+0x4d
double_free`doit+0x4d
double_free`doit+0x4d
double_free`doit+0x4d
double_free`doit+0x4d
double_free`doit+0x4d
double_free`doit+0x4d
: exdev.eu FSS 56 $;
If run as root you can get the the real LWP values that did the allocation and the frees:
: exdev.eu FSS 63 $; pfexec /usr/sbin/dtrace -qs doublefree.d -c /home/cg1344>
Hit Control-C to stop tracing
double free?
Address: 0xe53650
Previous free at: 2009 Jun 23 14:21:29, LWP 1
This free at: 2009 Jun 23 14:21:29, LWP 1
Frees 27543 nsec apart
Allocated 39366 nsec ago by LWP 1
libumem.so.1`free
double_free`doit+0x3a
double_free`doit+0x4d
double_free`doit+0x4d
double_free`doit+0x4d
double_free`doit+0x4d
double_free`doit+0x4d
double_free`doit+0x4d
double_free`doit+0x4d
double_free`doit+0x4d
: exdev.eu FSS 64 $;Here is the script in all it's glory.
#!/usr/sbin/dtrace -qs
BEGIN
{
printf("Hit Control-C to stop tracing\n");
}
ERROR
/ arg4 == DTRACEFLT_KPRIV || arg4 == DTRACEFLT_UPRIV /
{
lwp = -1;
}
pid$target::realloc:entry,
pid$target::free:entry
{
self->addr = arg0;
self->recurse++;
}
pid$target::realloc:return,
pid$target::free:return
/ self->recurse /
{
self->recurse--;
self->addr = 0;
}
pid$target::malloc:entry,
pid$target::memalign:entry,
pid$target::valloc:entry,
pid$target::calloc:entry,
pid$target::realloc:entry,
pid$target::realloc:entry,
pid$target::free:entry
/ lwp != -1 && self->lwp == 0 /
{
self->lwp = curlwpsinfo->pr_lwpid;
}
pid$target::malloc:entry,
pid$target::calloc:entry,
pid$target::realloc:entry,
pid$target::memalign:entry,
pid$target::valloc:entry,
pid$target::free:entry
/ self->lwp == 0 /
{
self->lwp = lwp;
}
pid$target::malloc:return,
pid$target::calloc:return,
pid$target::realloc:return,
pid$target::memalign:return,
pid$target::valloc:return
{
alloc_time[arg1] = timestamp;
allocated[arg1] = 1;
free_walltime[arg1] = 0LL;
free_time[arg1] = 0LL;
free_lwpid[arg1] = 0;
alloc_lwpid[arg1] = self->lwp;
self->lwp = 0;
}
pid$target::realloc:entry,
pid$target::free:entry
/ self->recurse == 1 && alloc_time[arg0] && allocated[arg0] == 0 /
{
printf("double free?\n");
printf("\tAddress: 0x%p\n", arg0);
printf("\tPrevious free at: %Y, LWP %d\n", free_walltime[arg0],
free_lwpid[arg0]);
printf("\tThis free at: %Y, LWP %d\n", walltimestamp,
self->lwp);
printf("\tFrees %d nsec apart\n", timestamp - free_time[arg0]);
printf("\tAllocated %d nsec ago by LWP %d\n",
timestamp - alloc_time[arg0], alloc_lwpid[arg0]);
ustack(10);
}
pid$target::realloc:entry,
pid$target::free:entry
/ self->recurse == 1 && alloc_time[arg0] && allocated[arg0] == 1 /
{
free_walltime[arg0] = walltimestamp;
free_time[arg0] = timestamp;
free_lwpid[arg0] = self->lwp;
allocated[arg0] = 0;
}
pid$target::free:entry
/self->lwp && self->recurse == 0/
{
self->lwp = 0;
}
1Most of the cases it “can't” be used is because it finds fatal problems early on in the start up of applications. Then the application writers make bizarre claims that this is a problem with libumem and will tell you it is not supported with their app. In fact the problem is with the application.
1Iostat has been around for years and until Dtrace came along and allowed us to look more deeply into the kernel was the tool for analysing how the io subsystem was working in Solaris. However interpreting the output has proved in the past to cause problems.
First if you are looking at latency issues it is vital that you use the smallest time quantum to iostat you can, which as of Solaris 10 is 1 second. Here is a sample of some output produced from “iostat -x 1”:
extended device statistics
device r/s w/s kr/s kw/s wait actv svc_t %w %b
sd3 0.0 0.0 0.0 0.0 0.0 0.0 0.0 0 0
extended device statistics
device r/s w/s kr/s kw/s wait actv svc_t %w %b
sd3 5.0 1026.5 1.6 1024.5 0.0 25.6 24.8 0 23
extended device statistics
device r/s w/s kr/s kw/s wait actv svc_t %w %b
sd3 0.0 0.0 0.0 0.0 0.0 0.0 0.0 0 0
The first thing to draw your attention to is the Column “%b” which the manual tells you is:
%b percent of time the disk is busy (transactions in progress)
So in this example the disk was “busy”, ie had at least one transaction (command) in progress for 23% of the time period. Ie 0.23 seconds as the time period was 1 second.
Now look at the “actv” column. Again the manual says:
actv average number of transactions actively being serviced (removed from the queue but not yet completed)
This is the number of I/O operations accepted, but not yet serviced, by the device.
In this example the average number of transactions outstanding for this time quantum was 25.6. Now here is the bit that is so often missed. Since we know that all the transactions actually took place within 0.23 seconds and were not evenly spread across the full second the average queue depth when busy was 100/23 * 25.6 or 111.3. Thanks to dtrace and this D script you can see the actual IO pattern2:
Even having done the maths iostat smooths out peaks in the IO pattern and thus under reports the peak number of transactions as 103.0 when the true value is 200.
The same is true for the bandwidth. The iostat above comes reports 1031.5 transactions a second (r/s + w/s) again though this does not take into account that all those IO requests happened in 0.23 seconds. So the true figure for the device would be 1031.5 * 100/23 which is 4485 transations/sec.
If we up the load on the disk a bit then you can conclude more from the iostat:
device r/s w/s kr/s kw/s wait actv svc_t %w %b
sd3 0.0 0.0 0.0 0.0 0.0 0.0 0.0 0 0
extended device statistics
device r/s w/s kr/s kw/s wait actv svc_t %w %b
sd3 5.0 2155.7 1.6 2153.7 30.2 93.3 57.1 29 45
extended device statistics
device r/s w/s kr/s kw/s wait actv svc_t %w %b
sd3 0.0 3989.1 0.0 3989.1 44.6 157.2 50.6 41 83
extended device statistics
device r/s w/s kr/s kw/s wait actv svc_t %w %b
sd3 0.0 0.0 0.0 0.0 0.0 0.0 0.0 0 0 Since the %w column is non zero, and from the manual %w is:
%w percent of time there are transactions waiting for service (queue non-empty)
This is telling us that the device's active queue was full. So on the third line of the above output the devices queue was full for 0.41 seconds. Since the queue depth is quite easy to find out3 and in this case was 256, you can deduce that the queue depth for that 0.41 seconds was 256. Thus the average for the 0.59 seconds left was (157.2-(0.41*256))/0.59 which is 88.5. The graph of the dtrace results tells a different story:
These
examples demonstrate what can happen if your application dumps a
large number of transactions onto a storage device while the through
put will be fine and if you look at iostat data things can appear ok
if the granularity of the samples is not close to your requirement
for latency any problem can be hidden by the statistical nature of
iostat.
1Apologies to those who saw a draft of this on my blog briefly.
2The application creating the IO attempts to keep 200 transations in the disk at all the time. It is interesting to see that it fails as it does not get notification of the completion of the IO until all or nearly all the outstanding transactions have completed.
3This command will do it for all the devices on your system:
echo '*sd_state::walk softstate | ::print -d -at "struct sd_lun" un_throttle' | pfexec mdb -k
however be warned the throttle is dynamic so dtrace gives the real answer.
What do you do if you manage to delete or corrupt /etc/name_to_major? Assuming you don't have a backup a ZFS snapshot or an alternative boot environment, in which case you probably are in the wrong job, you would appear to be in trouble.
First thing is not to panic. Do not reboot the system. If you do that it won't boot and your day has just got a whole lot worse. The data needed to rebuild /etc/name_to_major is in the running kernel so it can be rebuilt from that. If your system an x86 system it is also in the boot archive.
However if you have no boot archive or have over written it with the bad name_to_system this script will extract it from the kernel, all be it slowly:
#!/bin/ksh i=0 while ((i < 1000 )) do print "0t$i::major2name" | mdb -k | read x && echo $x $i let i=i+1 done
1Redirect that into a file then move the remains of your /etc/name_to_major out of the way and copy the file in place.
Next time make sure you have a back up or snapshot or alternative boot environment!
1You will see lots of errors of the form “mdb: failed to convert major number to name” these are to be expected. They can be limited to just one by adding “|| break” to the mdb line but that assumes that you have no holes in the major number listings which you may have if you have removed a device, so best to not risk that.
All the feeds
