From olio-user-return-363-apmail-incubator-olio-user-archive=incubator.apache.org@incubator.apache.org Mon May 24 02:08:40 2010 Return-Path: Delivered-To: apmail-incubator-olio-user-archive@minotaur.apache.org Received: (qmail 68540 invoked from network); 24 May 2010 02:08:40 -0000 Received: from unknown (HELO mail.apache.org) (140.211.11.3) by 140.211.11.9 with SMTP; 24 May 2010 02:08:40 -0000 Received: (qmail 1370 invoked by uid 500); 24 May 2010 02:08:40 -0000 Delivered-To: apmail-incubator-olio-user-archive@incubator.apache.org Received: (qmail 1327 invoked by uid 500); 24 May 2010 02:08:40 -0000 Mailing-List: contact olio-user-help@incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: olio-user@incubator.apache.org Delivered-To: mailing list olio-user@incubator.apache.org Received: (qmail 1319 invoked by uid 99); 24 May 2010 02:08:40 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 24 May 2010 02:08:40 +0000 X-ASF-Spam-Status: No, hits=1.0 required=10.0 tests=AWL,FREEMAIL_FROM,HTML_MESSAGE,RCVD_IN_DNSWL_NONE,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of bkontorinis@gmail.com designates 209.85.221.173 as permitted sender) Received: from [209.85.221.173] (HELO mail-qy0-f173.google.com) (209.85.221.173) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 24 May 2010 02:08:35 +0000 Received: by qyk4 with SMTP id 4so4345564qyk.18 for ; Sun, 23 May 2010 19:08:14 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:mime-version:received:in-reply-to :references:from:date:message-id:subject:to:content-type; bh=qhGBQ28dPLxz/pbL6Za52Bbq9Pvkre9Pji/SymD8vOA=; b=w5O26anaw0vGHAAjbMz5q4FOfDd9MjmT74KwgNtUsEFr5exDyIX/IR/2LZJxF4EFYK e/1+vHgS7ldLEhsVHJmJ4xw2lyUcC6NzuJ/CNKJA0CfdyoC7aB07spF4P95MbWYGHRKs d60OV43EAAtVe3cMje7+NjVACer4MGQmRMaSI= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-type; b=iane9N4s8FJBggwF9BsjsG2zBgOychwS5n7PvnUYK6Xy2P5xx1xbbktuH3YAGlwrr5 oIZEIlSHJa+NjkSFrCEoFWrC/y+2Wf991knkhfOZ+86JTv9nPD9npaaxVL/xrtvwvurA VeNqKKXKYzkbf2Vp0xuy2YLCyXD5fwGhNqgZk= Received: by 10.224.98.84 with SMTP id p20mr853926qan.298.1274666894096; Sun, 23 May 2010 19:08:14 -0700 (PDT) MIME-Version: 1.0 Received: by 10.229.216.66 with HTTP; Sun, 23 May 2010 19:07:54 -0700 (PDT) In-Reply-To: References: From: Vasileios Kontorinis Date: Sun, 23 May 2010 19:07:54 -0700 Message-ID: Subject: Re: ALERT - canary mismatch on efree() - heap overflow detected To: olio-user@incubator.apache.org, Shanti Subramanyam , "akara.sucharitakul" Content-Type: multipart/alternative; boundary=00c09f89928a6dfbf104874d83ed --00c09f89928a6dfbf104874d83ed Content-Type: text/plain; charset=ISO-8859-1 Shanti hi again, I sort of managed to fix that. I tried upgrading my php version to 5.2.6 and the alert went away. My problems though are not fixed. I even tried completely removing suhosin patch (it was a huge pain in ubuntu, since you need to recompile the php module by yourself) Still though my proms are there. Now, I get no warning the logs are clean but I get weird behavior. I needed to send you guys some pics so I created a related page at: http://cseweb.ucsd.edu/~vkontori/olio/olio.html I have comments describing the prom at the end. Any help would be most appreciated. I ve spent so much time on it without figuring it out. My configuration is 1 web server on a vm with 6GB of mem. 4 cpus 1 db server on a vm with 5GB of mem. 4 cpus 1 fs server on a vm with 4GB of mem. 4 cpus. (this one just exposes over NFS the filestore) All on the same physical machine a nehalem based server, siting on a Sun's Black box. I got similar behavior when I exposed the filestore on the Sun's thumper. Any help would be most appreciated. Thanks ------------------------------------------------------------------- Kontorinis Vasileios Phd student, University of California San Diego http://cseweb.ucsd.edu/~vkontori/ bkontorinis@gmail.com ------------------------------------------------------------------- 2010/5/19 Shanti Subramanyam > It's strange that multiple files seem to be complaining about it. Did you > try disabling Suhosin ? Are you seeing a perceptible drop in memory after > reaching steady state ? > > shanti > > > On Wed, May 19, 2010 at 4:28 PM, Vasileios Kontorinis < > bkontorinis@gmail.com> wrote: > >> Lately I get a bunch of these errors in my logs: >> >> [Wed May 19 22:26:37 2010] [error] [client 10.17.255.250] ALERT - canary >> mismatch on efree() - heap overflow detected (attacker '10.17.255.250', file >> '/var/www/oliophp/public_html/taggedEvents.php') >> [Wed May 19 22:26:37 2010] [error] [client 10.17.255.250] ALERT - canary >> mismatch on efree() - heap overflow detected (attacker '10.17.255.250', file >> '/var/www/oliophp/public_html/taggedEvents.php') >> [Wed May 19 22:26:37 2010] [error] [client 10.17.255.250] ALERT - canary >> mismatch on efree() - heap overflow detected (attacker '10.17.255.250', file >> '/var/www/oliophp/public_html/users.php') >> [Wed May 19 22:26:37 2010] [error] [client 10.17.255.250] ALERT - canary >> mismatch on efree() - heap overflow detected (attacker '10.17.255.250', file >> '/var/www/oliophp/public_html/events.php') >> [Wed May 19 22:26:37 2010] [error] [client 10.17.255.250] ALERT - canary >> mismatch on efree() - heap overflow detected (attacker '10.17.255.250', file >> '/var/www/oliophp/public_html/taggedEvents.php') >> >> According to blogs it is a php related issue. Suhosin patch detects a >> memory overflow and complains. >> I was just wondering if the Olio php code is having any known mem. leaks. >> >> My php version on ubuntu: >> PHP 5.2.4-2ubuntu5 with Suhosin-Patch 0.9.6.2 (cli) (built: Feb 27 2008 >> 20:46:51) >> Copyright (c) 1997-2007 The PHP Group >> Zend Engine v2.2.0, Copyright (c) 1998-2007 Zend Technologies >> >> It's too bad that I do not get a line on the php files that cause this. >> >> >> Has anyone come across this one before? >> >> >> ------------------------------------------------------------------- >> Kontorinis Vasileios >> Phd student, University of California San Diego >> San Diego, CA 92122 >> Cell. phone: (858) 717 6899 >> bkontorinis@gmail.com, vkontori@ucsd.edu >> ------------------------------------------------------------------- >> > > --00c09f89928a6dfbf104874d83ed Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Shanti hi again,
=A0=A0 =A0I sort of managed to fix that. I tried upgra= ding my php version to 5.2.6 and the alert went away. My problems though ar= e not fixed.=A0
I even tried completely removing suhosin patch (i= t was a huge pain in ubuntu, since you need to recompile the php module by = yourself)
Still though my proms are there.

Now, I get n= o warning the logs are clean but I get weird behavior. I needed to send you= guys some pics so I created a related page at:
I have comments describing the prom at the end.=A0

Any h= elp would be most appreciated. I ve spent so much time on it without figuri= ng it out.=A0
My configuration is 1 web server on a vm with 6GB of mem. 4 cpus
=
=A0=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 1 db se= rver on a vm with =A05GB of mem. 4 cpus
=A0=A0 =A0 =A0 =A0 =A0 = =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 1 fs server on a vm with =A04GB of = mem. 4 cpus. (this one just exposes over NFS the filestore)
All on the same physical machine a nehalem based server, siting on a S= un's Black box.=A0
I got similar behavior when I exposed the = filestore on the Sun's thumper.=A0

Any help wo= uld be most appreciated.=A0

Thanks
-------------------------------= ------------------------------------
Kontorinis Vasileios
Phd student= , University of California San Diego
http://cseweb.ucsd.edu/~vkontori/
bkontorinis@gmail.com
-----= --------------------------------------------------------------


2010/5/19 Shanti Subramanyam <shanti.subrama= nyam@gmail.com>
It's strange that multiple files seem to be complaining about it. Did y= ou try disabling Suhosin ? Are you seeing a perceptible drop in memory afte= r reaching steady state ?

shanti


On Wed, May 19, 2010 at 4:28 PM, Vasileios Kontorinis <= ;bkontorinis@gma= il.com> wrote:
Lately I get a bunch of these errors in my logs:

[Wed May 19 22:26:3= 7 2010] [error] [client 10.17.255.250] ALERT - canary mismatch on efree() -= heap overflow detected (attacker '10.17.255.250', file '/var/w= ww/oliophp/public_html/taggedEvents.php')
[Wed May 19 22:26:37 2010] [error] [client 10.17.255.250] ALERT - canary mi= smatch on efree() - heap overflow detected (attacker '10.17.255.250'= ;, file '/var/www/oliophp/public_html/taggedEvents.php')
[Wed Ma= y 19 22:26:37 2010] [error] [client 10.17.255.250] ALERT - canary mismatch = on efree() - heap overflow detected (attacker '10.17.255.250', file= '/var/www/oliophp/public_html/users.php')
[Wed May 19 22:26:37 2010] [error] [client 10.17.255.250] ALERT - canary mi= smatch on efree() - heap overflow detected (attacker '10.17.255.250'= ;, file '/var/www/oliophp/public_html/events.php')
[Wed May 19 2= 2:26:37 2010] [error] [client 10.17.255.250] ALERT - canary mismatch on efr= ee() - heap overflow detected (attacker '10.17.255.250', file '= /var/www/oliophp/public_html/taggedEvents.php')

According to blogs it is a php related issue. Suhosin patch detects a m= emory overflow and complains.
I was just wondering if the Olio php code= is having any known mem. leaks.

My php version on ubuntu:
PHP 5.= 2.4-2ubuntu5 with Suhosin-Patch 0.9.6.2 (cli) (built: Feb 27 2008 20:46:51)=
Copyright (c) 1997-2007 The PHP Group
Zend Engine v2.2.0, Copyright (c) = 1998-2007 Zend Technologies

It's too bad that I do not get a lin= e on the php files that cause this.


Has anyone come across this= one before?


-----------------------------------------------------= --------------
Kontorinis Vasileios
Phd stude= nt, University of California San Diego
San Diego, CA 92122
Cell. phone: (858) 717 6899
bkontorinis@gmail.com, vkontori@ucsd.edu
----------------------------= ---------------------------------------


--00c09f89928a6dfbf104874d83ed--