1 |
On thursday I was about to upgrade apache-2.2.16 to -2.2.17. |
2 |
It compiled flawlessly as always. However after I restarted the daemon the |
3 |
ssl connections timed out. I tried to revert the installation to the |
4 |
previous version, but the symptoms remained. |
5 |
|
6 |
I had to restore apache from my backup. |
7 |
|
8 |
Now I'm stuck. |
9 |
|
10 |
The linking seems to be the same: |
11 |
correct module |
12 |
ldd /usr/lib/apache2/modules/mod_ssl.so |
13 |
linux-gate.so.1 => (0x4f33b000) |
14 |
libssl.so.1.0.0 => /usr/lib/libssl.so.1.0.0 (0x4f287000) |
15 |
libcrypto.so.1.0.0 => /usr/lib/libcrypto.so.1.0.0 (0x4f0fb000) |
16 |
libgmp.so.3 => /usr/lib/libgmp.so.3 (0x4f0aa000) |
17 |
libdl.so.2 => /lib/libdl.so.2 (0x4f0a6000) |
18 |
libz.so.1 => /lib/libz.so.1 (0x4f08f000) |
19 |
libpthread.so.0 => /lib/libpthread.so.0 (0x4f075000) |
20 |
libc.so.6 => /lib/libc.so.6 (0x4ef16000) |
21 |
/lib/ld-linux.so.2 (0x4f33c000) |
22 |
incorrect module |
23 |
ldd /usr/lib/apache2/modules/mod_ssl.so |
24 |
linux-gate.so.1 => (0x4c38c000) |
25 |
libssl.so.1.0.0 => /usr/lib/libssl.so.1.0.0 (0x4c2d7000) |
26 |
libcrypto.so.1.0.0 => /usr/lib/libcrypto.so.1.0.0 (0x4c14b000) |
27 |
libgmp.so.3 => /usr/lib/libgmp.so.3 (0x4c0fa000) |
28 |
libdl.so.2 => /lib/libdl.so.2 (0x4c0f6000) |
29 |
libz.so.1 => /lib/libz.so.1 (0x4c0df000) |
30 |
libpthread.so.0 => /lib/libpthread.so.0 (0x4c0c5000) |
31 |
libc.so.6 => /lib/libc.so.6 (0x4bf66000) |
32 |
/lib/ld-linux.so.2 (0x4c38d000) |
33 |
|
34 |
Here is an exmaple of two a PAX terminations: |
35 |
Apr 17 01:47:51 atoth kernel: PAX: From 66.249.71.137: execution attempt |
36 |
in: (null), 00000000-00000000 00000000 |
37 |
Apr 17 01:47:51 atoth kernel: PAX: terminating task: |
38 |
/usr/sbin/apache2(apache2):3531, uid/euid: 81/81, PC: 00000058, SP: |
39 |
484c1a7c |
40 |
Apr 17 01:47:51 atoth kernel: PAX: bytes at PC: ?? ?? ?? ?? ?? ?? ?? ?? ?? |
41 |
?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? |
42 |
Apr 17 01:47:51 atoth kernel: PAX: bytes at SP-4: 484c1b18 4e5c60f4 |
43 |
158393c4 484c1af8 484c1af4 00000000 4e83b317 4e5de8c8 4e83c7b9 4e5d52a2 |
44 |
155058f0 484c1b08 00000dcb 07fc8be9 00000001 4e50c07f 484c1ae8 4e525980 |
45 |
00000001 484c1af8 484c1af4 |
46 |
Apr 17 01:47:51 atoth kernel: PAX: From 66.249.71.137: execution attempt |
47 |
in: (null), 00000000-00000000 00000000 |
48 |
Apr 17 01:47:51 atoth kernel: PAX: terminating task: |
49 |
/usr/sbin/apache2(apache2):3554, uid/euid: 81/81, PC: 00000058, SP: |
50 |
484c1d2c |
51 |
Apr 17 01:47:51 atoth kernel: PAX: bytes at PC: ?? ?? ?? ?? ?? ?? ?? ?? ?? |
52 |
?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? |
53 |
Apr 17 01:47:51 atoth kernel: PAX: bytes at SP-4: 484c1dc8 4e5c60f4 |
54 |
158393c4 484c1da8 484c1da4 00000000 0000000b 00000000 484c1da8 4e3e314b |
55 |
00004458 4e57a7d9 0000029c 0000000b 0000000a 0000000c 4e57a7d9 0000029a |
56 |
0000000b 484c1da8 484c1da4 |
57 |
|
58 |
The linking consistency is OK. Revdep-ebuild and lafilefixer --justfixit |
59 |
finds no packages to recompile. |
60 |
But my current toolchain still produces unusable apache packages. |
61 |
Reverting to the old binary makes the problem go away. |
62 |
|
63 |
Portage 2.1.9.42 |
64 |
hardened/linux/x86 |
65 |
gcc-4.5.2 |
66 |
glibc-2.13-r2 |
67 |
2.6.38-hardened |
68 |
gentoo-1.12.14 |
69 |
apache-2.2.16 |
70 |
openssl-1.0.0d |
71 |
openssh-5.8_p1-r1 |
72 |
|
73 |
I couldn't find any other useful messages in the log. |
74 |
How I should continue tracking down the problem? |
75 |
|
76 |
Please help me: |
77 |
Dw. |
78 |
-- |
79 |
dr Tóth Attila, Radiológus, 06-20-825-8057 |
80 |
Attila Toth MD, Radiologist, +36-20-825-8057 |