端端舝

debugging server
with strace
Yoshinari Takaoka
@mumumu

Agenda
♂ 赻撩庄賡
♂ strace basic
♂ 扑旦氾丞戊奈伙卞勾中化
♂ strace卞方月扔奈田犯田永弘及膨垀
♂ 引午戶
失皿伉弗奈扑亦件巨件斥瓦失匹丐勻化手﹜ strace 卞方
月扔奈田及犯田永弘毛歹井勻凶𠸎卞卅月仇午互醴㻢

赻撩庄賡(1)
♂ Yoshinari Takaoka @mumumu
♂ 末白玄它尼失巨件斥瓦失
Java 匹 Web失皿伉 ↙ 瞎煋心末白玄挌
↙ EC挌 ↙ 政�
♂ 𣷣憷庾堤旯

赻撩庄賡(2)
♂ C, C++, Java, JavaScript, PHP, Python
♂ Linux (Red Hat, Debian, KDE)
♂ Translator, PHP Manual Maintainer
http://producingoss.com/
http://www.oreilly.co.jp/books/9784873114125/

strace 勻化? (1)
♂ system call tracer for Linux
http://sourceforge.net/projects/strace/
灍俴笢及末白玄它尼失互網太堤仄化中月☆扑旦氾丞
戊奈伙★毛伉失伙正奶丞卞袚中井仃日木月汁奈伙

扑旦氾丞戊奈伙勻化? (1)
♂ 杻痜互斛猁卅CPU韜鍔及灍俴毛 kernel �卞云�
中允月凶戶及帊瞎心
甩奈玉它尼失紱釬
賃曰煋心＃ etc
♂ 交奈扒奈�萸分午凶分及C晟惤及憝杅網太堤仄
kernel 及辻夔(扔奈申旦)毛網太堤允憝杅午晟中𡥼
尹化手方中
http://www.atmarkit.co.jp/ait/articles/1111/16/news161.html

strace 勻化? (2)
♂ system call tracer for Linux
http://sourceforge.net/projects/strace/
灍俴笢及末白玄它尼失及(kernel及辻夔毛灍俴仄化中月) 憝杅網太堤仄毛伉失
伙正奶丞卞袚中井仃日木月汁奈伙
♂ 袚中井仃日木月憝杅及堤薯反C晟惤及倛宒
♂ �砓午允月末白玄它尼失及�五毛剠礿砦匹�月仇午互匹五月
扔奈田及梤漲賤昴
失皿伉伊矛伙匹及示玄伙生永弁及捼𦷰 ...卅升卞笭惘
＃. 猁允月卞犯田永弘汁奈伙﹝

Demo
sudo strace -T -tt -p XX -f -e
trace=network,file,read,write
♂ 奻�毛灍蕣卞支勻化心月
♂ 灍俴笢及皿伕本旦卞失正永民匹五月
♂ 堤薯今木月1俴1俴互扑旦氾丞戊奈伙
♂ 仃升嗣煦1俴1俴互睡互卅氏分井歹井氏卅中
↙ 扑旦氾丞戊奈伙毛手勻午眭月斛猁互丐月

扑旦氾丞戊奈伙勻化?(2)
♂ 扑旦氾丞戊奈伙反 kernel 及辻夔毛網太堤允凶戶及憝杅網太
堤仄
♂ Linux 及扑旦氾丞戊奈伙反2.6炵匹手300弇丐月
仇仇匹反﹜扔奈田及犯田永弘卞砢蕾勾手及毛賤掊
[弁仿奶失件玄|扔奈田] 及價掛腔卅�五毛眭勻化云仁午歹井曰支
允中 (Unix皿伕弘仿立件弘卞笒仄戈午奾謎中)
♂ 眭日卅中扑旦氾丞戊奈伙反...
☆manpage of 扑旦氾丞戊奈伙靡★匹弘弘月井
Linux奻匹 ☆man 2 扑旦氾丞戊奈伙靡★

扔奈田及價掛腔卅�五
int sock = socket(PF_INET, SOCK_STREAM);
bind(sock, addr);
listen(sock);
while(1) {
// 復蕾𦤦心及諉適毛龰曰堤允
int new_sock = accept(sock, &addr);
char buf[1024]
// 弁仿奶失件玄井日掂戈(忳陓)
size_t size = read(new_sock, buf, 1024);
if (size == 0) {
close(sock); // 冞陓互卅仃木壬睡手仄卅中
} else {
﹛ // 弁仿奶失件玄卞𤩸仁(冞陓)
write(new_sock, buf, size);
}
}

弁仿奶失件玄及價掛腔卅�五
int sock = socket(PF_INET, SOCK_STREAM);
connect(sock, addr); // 諉適
write(sock, ※ping§); // 扔奈田卞冞陓
char response[100];
read(sock, response, 100); // 扔奈田井日忳陓

價掛腔卅扑旦氾丞戊奈伙(生永玄伐奈弁)
♂ 末弗永玄毛釬月/諉適允月(弁仿奶失件玄)
socket / connect
♂ 禾奈玄匹諉適毛渾勾 / 復蕾仄凶諉適毛末弗永玄午仄化龰腕(扔奈田)
listen / accept
♂ 末弗永玄井日睡井掂戈(忳陓)
recv / recvfrom / recvmsg / read炵憝杅 ... etc
♂ 末弗永玄卞睡井𤩸仁(冞陓)
send / sendto / sendmsg / write炵憝杅 ... etc

價掛腔卅扑旦氾丞戊奈伙(生永玄伐奈弁)(2)
♂ 末弗永玄及袨颷劐趙毛渾勾
select/poll/epoll_wait ＃ etc
♂ 諉適毛寯元月
shutdown/close ... etc

價掛腔卅扑旦氾丞戊奈伙(白央奶伙)
♂ 白央奶伙毛嶱仁/寯元月
open / close
♂ 白央奶伙及�赽毛�月
stat / fstat / lstat ... etc
♂ 白央奶伙井日睡井掂戈
read / readv / pread / preadv ... etc
♂ 白央奶伙卞睡井𤩸仁
write / writev / pwrite / pwritev ... etc

價掛腔卅扑旦氾丞戊奈伙(公及坻)
♂ 白央奶伙犯奴旦弁伉皿正毛中欠中欠紱釬
fcntl / ioctl / epoll_ctl ＃ etc
♂ 丟乒伉憝�S
mmap / munmap ...etc
♂ 媆覦毛龰腕
gettimeofday ＃ etc

楓俋�: 白央奶伙犯奴旦弁伉皿正卞勾中化
♂ 白央奶伙支末弗永玄毛嶱中凶午五﹜公木日毛舑�e允月0
眕奻及杅�毛白央奶伙犯奴旦弁伉皿正(�扴赽)午網少
int fd = open(※hoge.txt§, O_RDONLY);
ssize_t readbyte = read(fd, buffer, byte);
白央奶伙支末弗永玄卞掂心𤩸五允月午五反﹜仇及白央奶伙
犯奴旦弁伉皿正互斛內竘杅卞卅月﹝
仇及仇午互﹜strace 及堤薯毛掂戈午五卞笭猁卅忒互
井曰卞卅月﹝

方仁妏丹strace及
戊穴件玉仿奶件左皿扑亦件

strace 及左皿扑亦件(1)
♂ 眕狟毛�尹化云仃壬灍煾匹丐月最僅嬪日卅中
♂ �仄仁反 man strace
-tt
穴奶弁伕鏃�g弇及正奶丞旦正件皿毛葆樓
-T
跪扑旦氾丞戊奈伙卞井井勻凶媆嶲毛�嶕
-p
﹛失正永民允月皿伕本旦ID毛硌隅

strace及左皿扑亦件(2)
-f
﹛fork 仄凶赽[皿伕本旦|旦伊永玉]手袚聑允月
-e trace=XXX
袚聑允月扑旦氾丞戊奈伙支袚聑及帊源毛硌隅﹝
仇木匹ロ�互祥逋允月方丹卅日硌隅六內卞�仄化心月
瞰) -e trace=network, file, read, write
白央奶伙午生永玄伐奈弁炵及扑旦氾丞戊奈伙毛
袚聑允月﹝方仁妏中引允

strace及左皿扑亦件(3)
-o filename
㻢𨃨巨仿奈堤薯(犯白巧伙玄)匹反卅仁﹜白央奶伙
卞玄伊奈旦毛堤薯允月
詢玄仿白奴永弁及扔奈田分午允什卞扔奶朮互操湮卞
卅月及匹龰㜳蛁砩﹝

仇木匹strace及價渙反
壬勻切曰ㄐ(␡奈?)

strace卞方月扔奈田
犯田永弘及膨垀

膨垀反4勾
♂ 掂心勿日中及匹﹜堤薯毛掂戈戊汁毛勾井戈
♂ 赽皿伕本旦卞跦𠸎方仁灍俴
♂ �都卅扑旦氾丞戊奈伙及𥽋曰�卞蛁醴
♂ 綈中﹜引凶反�引勻凶�五卞蛁醴

strace 及堤薯毛掂戈戊汁
♂ 反元戶午皺歹曰毛勾井戈
♂ 肮元白央奶伙犯奴旦弁伉皿正毛袚丹
♂ 失皿伉及�五毛眭勻化卅仁化手掂戶月互﹜眭勻化中凶
源互霜木毛芢䛐仄支允中

反元戶午皺歹曰毛勾井戈
♂ Web扔奈田及�磁﹜反元戶反諉適毛accept 仄化伉
弁巨旦玄及笢旯毛忳仃龰月午仇欠井日
皺歹曰反伊旦禾件旦毛殿允午仇欠
♂ HTML毛苂仁窒煦午井﹝QUERY_STRING 午井丐月
窒煦午井﹝中欠中欠﹝

反元戶午皺歹曰毛勾井戈
23:44:43.704135 read(8, "f0QUERY_STRINGT2u=hogehoge...."...,
2648) = 2648 <0.000015>
＃ snip
23:44:43.798581 writev(8, [{"HTTP/1.1", 8}, {" ", 1}, {"200 OK", 6},
{"rn", 2}, {"Content-Type", 12}, {": ", 2}, {"text/html; charset=utf-8", 24},
{"rn", 2}, {"P3P", 3}, {": ", 2}, {"rn", 2}, {"Pragma", 6}, {": ", 2},
{"no-cache", 8}, {"rn", 2}, {"Cache-Control", 13}, {": ", 2}, {"private,
no-cache, no-cache="Set"..., 58}, {"rn", 2}, {"Set-Cookie", 10}, {": ",
2}, {"rn", 2}, {"rn", 2}], 25) = 281 <0.000030>
23:44:43.798747 write(8, "<html><head><style>html,body{mar"...,
1641) = 1641 <0.000022>

肮元白央奶伙犯奴旦弁伉皿正毛袚丹
♂ 肮元白央奶伙犯奴旦弁伉皿正毛妏勻化中月玄伊奈旦反
珨窣及�I燴﹝
♂ 恚杅及伉弁巨旦玄及玄伊奈旦互嶒遨允月笢匹﹜白央奶
伙犯奴旦弁伉皿正反衄蚚卅忒僇

肮元白央奶伙犯奴旦弁伉皿正毛袚丹(2)
23:31:15.410761 sendto(15, "rn$7rnhoge foo barrn$44rnfoo.bar.s"..., 68, 0, NULL, 0) = 68 <0.000022>
23:31:15.410829 recvfrom(15, "hogehogern", 4096, 0, NULL, NULL) = 4 <0.000263>
23:31:15.412355 sendto(16, "*2rn$7rhoge foo barrn$44rnhogehoge.s"..., 68, 0, NULL, 0) = 68 <0.000021>
23:31:15.412422 recvfrom(16, "*0rn", 4096, 0, NULL, NULL) = 4 <0.000350>
23:31:15.413929 socket(PF_INET, SOCK_STREAM, IPPROTO_TCP) = 49 <0.001255>
23:31:15.415271 connect(49, {sa_family=AF_INET, sin_port=htons(80), sin_addr=inet_addr("XXX.XXX.XXX.XXX")}, 16) =
-1EINPROGRESS (Operation now in progress) <0.000026>
2:31:15.415705 socket(PF_INET, SOCK_STREAM, IPPROTO_TCP) = 50 <0.000016>
3:31:15.415798 connect(50, {sa_family=AF_INET, sin_port=htons(80), sin_addr=inet_addr("XXX.XXX.XX.XX")}, 16) = -1
EINPROGRESS (Operation now in progress) <0.000030>
23:31:15.418609 getsockopt(49, SOL_SOCKET, SO_ERROR, [127367220803141632], [4]) = 0 <0.000011>
23:31:15.418672 getpeername(49, {sa_family=AF_INET, sin_port=htons(80), sin_addr=inet_addr("XX.XX.XX.XX")},
[12703950620852240]) = 0 <0.000010>
23:31:15.418715 getsockname(49, {sa_family=AF_INET, sin_port=htons(38568), sin_addr=inet_addr("XX.XX.XX.X")},
[12147897053468426256]) = 0 <0.000008>
23:31:15.418859 sendto(49, "POST /hoge HTTP/1.1rnHost: hoge"..., 818, MSG_NOSIGNAL, NULL, 0) = 818 <0.000025>
23:31:15.419129 getsockopt(50, SOL_SOCKET, SO_ERROR, [127238371784261632], [4]) = 0 <0.000009>
23:31:15.419184 getpeername(50, {sa_family=AF_INET, sin_port=htons(80), sin_addr=inet_addr("XXX.XX.XX.XX")},
[12703950620852240]) = 0 <0.000008>
23:31:15.419224 getsockname(50, {sa_family=AF_INET, sin_port=htons(50707), sin_addr=inet_addr("XXX.XXX.XX.X")},
[1424826340699275280]) = 0 <0.000009>
23:31:15.419435 sendto(50, "POST /?foo=bar HTTP/1.1rnHos"..., 759, MSG_NOSIGNAL, NULL, 0) = 759 <0.000020>
23:31:15.435741 recvfrom(49, "HTTP/1.1 204 No Contentrn"..., 16384, 0, NULL, NULL) = 305 <0.000011>
23:31:15.440848 recvfrom(50, "HTTP/1.1 200 OKrnServer: ...."..., 16384, 0, NULL, NULL) = 822 <0.000012>

赽皿伕本旦卞跦𠸎方仁灍俴
♂ 扔奈田及笒皿伕本旦反價掛fork(spawn)允月及互
砢醴卅及匹﹜赽皿伕本旦及皿伕本旦ID 毛 -p 卞硌隅
公木匹手皿伕本旦支旦伊永玉及疆仄今卞丞仿互丐月卅
升及燴蚕匹卅井卅井�五互參挍仄勿日中�磁手嗣
中 (丹引中源楊卅中匹允井友....)
云井仄卅�五互�勾井勻凶日仿永平奈仁日中及𠸎㜭
卅𠸎厥切匹灍俴允月及互憚

赽皿伕本旦卞跦𠸎方仁灍俴
www-data 6331 681 0 14:54 ? 00:00:04 /usr/sbin/apache2 -k start
www-data 15708 681 0 8堎23 ? 00:00:16 /usr/sbin/apache2 -k start
♂

�都卅扑旦氾丞戊奈伙及𥽋曰�卞蛁醴(1)
♂ 扑旦氾丞戊奈伙互�都媆卞殿允�反�〝分
互﹜strace 及堤薯卞反巨仿奈媆卞燴蚕手勾中化仁月
及匹﹜燴蚕卞蛁醴﹝
♂ No such file or directory 反方仁丐月�
♂ 癶僇及扔奈田(失皿伉)及�五毛參挍仄化云仇丹

�都卅扑旦氾丞戊奈伙及𥽋曰�卞蛁醴(2)
[pid 15033] 04:39:44.457978 accept(4, 0x7ffff7b82700, [16902192126610112528]) = -1 EMFILE (Too many open files)
[pid 15033] 04:39:44.458035 open("/var/log/hoge/hoge.log", O_WRONLY|O_CREAT|O_APPEND, 0666) = -1 EMFILE (Too many
open files)
[pid 15033] 04:39:44.458071 write(493, "foobarrn"..., 115) = 115
[pid 15033] 04:39:44.458110 epoll_ctl(3, EPOLL_CTL_MOD, 493, {EPOLLIN, {u32=493, u64=493}}) = 0
[pid 15033] 04:39:44.458139 read(361, "hogefugarn"..., 16384) = 68
[pid 15033] 04:39:44.458171 epoll_ctl(3, EPOLL_CTL_MOD, 361, {EPOLLIN|EPOLLOUT, {u32=361, u64=361}}) = 0
[pid 15033] 04:39:44.458201 epoll_wait(3, {{EPOLLIN, {u32=4, u64=4}}, {EPOLLOUT, {u32=361, u64=361}}, {EPOLLIN, {u32=190,
u64=190}}}, 10240, 8) = 3
open files)
[pid 15033] 04:39:44.458311 write(361, "hogehogern", 4) = 4
[pid 15033] 04:39:44.458369 epoll_ctl(3, EPOLL_CTL_MOD, 361, {EPOLLIN, {u32=361, u64=361}}) = 0
[pid 15033] 04:39:44.458416 read(190, "hogehogern"..., 16384) = 160
[pid 15033] 04:39:44.458460 epoll_ctl(3, EPOLL_CTL_MOD, 190, {EPOLLIN|EPOLLOUT, {u32=190, u64=190}}) = 0
[pid 15033] 04:39:44.458513 epoll_wait(3, {{EPOLLIN, {u32=4, u64=4}}, {EPOLLOUT, {u32=190, u64=190}}, {EPOLLIN, {u32=493,
u64=493}}}, 10240, 8) = 3
open files)
[pid 15033] 04:39:44.458613 write(190, "hogehogern", 5) = 5

綈中﹜引凶反�引勻凶�五卞蛁醴(1)
♂ Operation now in Progress 午井
<unfinished ＃>
午中丹�及丟永本奈斥互肮元�I燴匹仁曰殿今木化云
曰﹜�I燴互筳氏匹中卅中方丹卅日猁蛁醴
♂ 伉失伙正奶丞匹�化中月午﹜捶及方丹卞霜木化中月玄
伊奈旦互珨侘�引月侘嶲互�勾井月仇午手﹝

[pid 22331] 03:55:56.482860 socket(PF_INET, SOCK_STREAM, IPPROTO_IP) = 9
[pid 22331] 03:55:56.483255 connect(9, {sa_family=AF_INET, sin_port=htons(XXXX), sin_addr=inet_addr("127.0.0.1")}, 16) = 0
[pid 22331] 03:55:56.483406 sendto(9, "hogehogern", 23, 0, NULL, 0) = 23
[pid 22331] 03:55:56.483469 recvfrom(9, "+foobarrn", 4096, 0, NULL, NULL) = 5
....snip
[pid 22331] 03:55:56.487635 connect(13, {sa_family=AF_INET, sin_port=htons(XXXX), sin_addr=inet_addr("XX.XX.XX.XX")}, 16) = -1
EINPROGRESS (Operation now in progress)
[pid 22331] 03:55:56.487873 getsockopt(13, SOL_SOCKET, SO_ERROR, [153356102270976000], [4]) = 0
[pid 22331] 03:55:56.487931 sendto(13, "hogehogehogehoge"..., 61, 0, NULL, 0) = 61
[pid 22331] 03:55:56.488534 recvfrom(13, "fugafugafugafuga"..., 4096, 0, NULL, NULL) = 76
[pid 22331] 03:55:56.488855 connect(14, {sa_family=AF_INET, sin_port=htons(XXXX), sin_addr=inet_addr("XX.XX.XX.XX")}, 16) = -1
EINPROGRESS (Operation now in progress)
[pid 22331] 03:55:56.488987 getsockopt(14, SOL_SOCKET, SO_ERROR, [153356102270976000], [4]) = 0
[pid 22331] 03:55:56.489039 sendto(14, "foobarrn"..., 59, 0, NULL, 0) = 59
[pid 22331] 03:55:56.489353 recvfrom(14, "hogehogern"..., 4096, 0, NULL, NULL) = 73
[pid 22331] 03:55:56.491986 connect(15, {sa_family=AF_INET, sin_port=htons(XXXX), sin_addr=inet_addr("XX.XX.XX.XX")}, 16) = 0
[pid 22331] 03:55:56.492135 sendto(15, "foobarn"..., 51, 0, NULL, 0) = 51
[pid 22331] 03:55:56.492177 recvfrom(15, <unfinished ...>

♂ 正奶丞旦正件皿毛�化升丹�化手綈中手及手蛁砩
♂ 扔奈田卅及匹﹜𡛟湘毛切扎氏午殿六化中月井手蛁醴
[pid 1710] 14:06:19.006556 futex(0x619064, FUTEX_WAIT_PRIVATE, 17,
NULL <unfinished ...>
[pid 1709] 14:06:19.006627 futex(0x619b60, FUTEX_WAIT_PRIVATE, 2,

引午戶
♂ strace 反剠礿砦匹及犯田永弘卞笭惘
�五互劐卅扔奈田毛�勾仃凶日 strace 仄化心月
劐卅及互�勾井木壬仿永平奈仁日中及勾手曰匹
♂ 價掛腔卅扑旦氾丞戊奈伙毛參挍仄方丹
♂ 方仁妏丹左皿扑亦件反癹日木化中月
♂ 堤薯毛掂戈卞反屾仄戊汁互中月互﹜膨垀毛云今
尹木壬湮桾痲

端端舝

debugging server with strace

Recommended

More Related Content

What's hot (20)

Similar to debugging server with strace (20)

Recently uploaded (6)

debugging server with strace