| 1 |
On thursday I was about to upgrade apache-2.2.16 to -2.2.17. |
| 2 |
It compiled flawlessly as always. However after I restarted the daemon the |
| 3 |
ssl connections timed out. I tried to revert the installation to the |
| 4 |
previous version, but the symptoms remained. |
| 5 |
|
| 6 |
I had to restore apache from my backup. |
| 7 |
|
| 8 |
Now I'm stuck. |
| 9 |
|
| 10 |
The linking seems to be the same: |
| 11 |
correct module |
| 12 |
ldd /usr/lib/apache2/modules/mod_ssl.so |
| 13 |
linux-gate.so.1 => (0x4f33b000) |
| 14 |
libssl.so.1.0.0 => /usr/lib/libssl.so.1.0.0 (0x4f287000) |
| 15 |
libcrypto.so.1.0.0 => /usr/lib/libcrypto.so.1.0.0 (0x4f0fb000) |
| 16 |
libgmp.so.3 => /usr/lib/libgmp.so.3 (0x4f0aa000) |
| 17 |
libdl.so.2 => /lib/libdl.so.2 (0x4f0a6000) |
| 18 |
libz.so.1 => /lib/libz.so.1 (0x4f08f000) |
| 19 |
libpthread.so.0 => /lib/libpthread.so.0 (0x4f075000) |
| 20 |
libc.so.6 => /lib/libc.so.6 (0x4ef16000) |
| 21 |
/lib/ld-linux.so.2 (0x4f33c000) |
| 22 |
incorrect module |
| 23 |
ldd /usr/lib/apache2/modules/mod_ssl.so |
| 24 |
linux-gate.so.1 => (0x4c38c000) |
| 25 |
libssl.so.1.0.0 => /usr/lib/libssl.so.1.0.0 (0x4c2d7000) |
| 26 |
libcrypto.so.1.0.0 => /usr/lib/libcrypto.so.1.0.0 (0x4c14b000) |
| 27 |
libgmp.so.3 => /usr/lib/libgmp.so.3 (0x4c0fa000) |
| 28 |
libdl.so.2 => /lib/libdl.so.2 (0x4c0f6000) |
| 29 |
libz.so.1 => /lib/libz.so.1 (0x4c0df000) |
| 30 |
libpthread.so.0 => /lib/libpthread.so.0 (0x4c0c5000) |
| 31 |
libc.so.6 => /lib/libc.so.6 (0x4bf66000) |
| 32 |
/lib/ld-linux.so.2 (0x4c38d000) |
| 33 |
|
| 34 |
Here is an exmaple of two a PAX terminations: |
| 35 |
Apr 17 01:47:51 atoth kernel: PAX: From 66.249.71.137: execution attempt |
| 36 |
in: (null), 00000000-00000000 00000000 |
| 37 |
Apr 17 01:47:51 atoth kernel: PAX: terminating task: |
| 38 |
/usr/sbin/apache2(apache2):3531, uid/euid: 81/81, PC: 00000058, SP: |
| 39 |
484c1a7c |
| 40 |
Apr 17 01:47:51 atoth kernel: PAX: bytes at PC: ?? ?? ?? ?? ?? ?? ?? ?? ?? |
| 41 |
?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? |
| 42 |
Apr 17 01:47:51 atoth kernel: PAX: bytes at SP-4: 484c1b18 4e5c60f4 |
| 43 |
158393c4 484c1af8 484c1af4 00000000 4e83b317 4e5de8c8 4e83c7b9 4e5d52a2 |
| 44 |
155058f0 484c1b08 00000dcb 07fc8be9 00000001 4e50c07f 484c1ae8 4e525980 |
| 45 |
00000001 484c1af8 484c1af4 |
| 46 |
Apr 17 01:47:51 atoth kernel: PAX: From 66.249.71.137: execution attempt |
| 47 |
in: (null), 00000000-00000000 00000000 |
| 48 |
Apr 17 01:47:51 atoth kernel: PAX: terminating task: |
| 49 |
/usr/sbin/apache2(apache2):3554, uid/euid: 81/81, PC: 00000058, SP: |
| 50 |
484c1d2c |
| 51 |
Apr 17 01:47:51 atoth kernel: PAX: bytes at PC: ?? ?? ?? ?? ?? ?? ?? ?? ?? |
| 52 |
?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? |
| 53 |
Apr 17 01:47:51 atoth kernel: PAX: bytes at SP-4: 484c1dc8 4e5c60f4 |
| 54 |
158393c4 484c1da8 484c1da4 00000000 0000000b 00000000 484c1da8 4e3e314b |
| 55 |
00004458 4e57a7d9 0000029c 0000000b 0000000a 0000000c 4e57a7d9 0000029a |
| 56 |
0000000b 484c1da8 484c1da4 |
| 57 |
|
| 58 |
The linking consistency is OK. Revdep-ebuild and lafilefixer --justfixit |
| 59 |
finds no packages to recompile. |
| 60 |
But my current toolchain still produces unusable apache packages. |
| 61 |
Reverting to the old binary makes the problem go away. |
| 62 |
|
| 63 |
Portage 2.1.9.42 |
| 64 |
hardened/linux/x86 |
| 65 |
gcc-4.5.2 |
| 66 |
glibc-2.13-r2 |
| 67 |
2.6.38-hardened |
| 68 |
gentoo-1.12.14 |
| 69 |
apache-2.2.16 |
| 70 |
openssl-1.0.0d |
| 71 |
openssh-5.8_p1-r1 |
| 72 |
|
| 73 |
I couldn't find any other useful messages in the log. |
| 74 |
How I should continue tracking down the problem? |
| 75 |
|
| 76 |
Please help me: |
| 77 |
Dw. |
| 78 |
-- |
| 79 |
dr Tóth Attila, Radiológus, 06-20-825-8057 |
| 80 |
Attila Toth MD, Radiologist, +36-20-825-8057 |
Archives