wubingzheng / memleax Goto Github PK

OS:
CentOS release 6.9 (Final)

Steps to reproduce:
wget https://github.com/WuBingzheng/memleax/archive/v1.1.1.zip
unzip v1.1.1.zip && cd memleax-1.1.1
./configure && make && make install

Output:
checking machine type...
checking OS type...
checking libraries...
checking libunwind...
checking libelf...
checking libdw...
libdw-devel is missing.
checking libdwarf...
generate Makefile...
done.
cc -DMLX_X86_64 -DMLX_LINUX -DMLX_WITH_LIBDWARF -I/usr/include/libdwarf/ -g -O2 -Wall -c -o breakpoint.o breakpoint.c
In file included from machines.h:4:0,
from breakpoint.c:15:
ptrace_utils.h: In function ‘ptrace_get_regs’:
ptrace_utils.h:35:9: error: ‘PTRACE_GETREGSET’ undeclared (first use in this function)
ptrace(PTRACE_GETREGSET, pid, (void *)regset, &ioVec);
^
ptrace_utils.h:35:9: note: each undeclared identifier is reported only once for each function it appears in
ptrace_utils.h: In function ‘ptrace_set_regs’:
ptrace_utils.h:47:9: error: ‘PTRACE_SETREGSET’ undeclared (first use in this function)
ptrace(PTRACE_SETREGSET, pid, (void *)regset, &ioVec);
^
make: *** [breakpoint.o] Error 1

Hi,
I tried to use your tool, but got:

$memleax 26096
Error: open map of /drm: No such file or directory

It is 64bit Arch Linux.

Please advice

I have using memleax to attach my C application. My application has CURL with SSL for push notification. if i use valgrind for one time program, It did not detect any memory leak.

but if I attached program to memleax, It detect overwhelming memory leak and kill my program as well.

Scenario to trigger:

1. Create a curl with SSL program with scanf hooking from start and end, attached pid to memleax.

memleax_issue.txt

Memleax helps finding leaked memory.
Will it be possible to free up the leaked memory if I invoke this tool from the target process probably in a different thread?
I may sound lame, please correct me.
Thanks.

can this project be cross-compiled?
I want to run it on mips platform.

I'm trying to use memleax in an environment with only 4GB of ram.

Memleax is allocating about 2GB immediately upon launch, and is being killed by the OOM killer.

Why would Memleax need to allocate this much memory?

This is under 64-bit RedHat 6 (yes, I know it's old, but it's what I have). memleax sources were obtained from the downloadable .tar.gz.

Perhaps I'm misunderstanding how this is supposed to work, but memleax does not detect any leaks on a program that (1) waits for the user to attach memleax, (2) after memleax is attached, allocates memory that is never freed, (2) and sleeps 30 seconds. Even though the unfreed memory blocks are allocated after memleax is attached, nothing is ever reported:

$ memleax -e 2 24838
== Begin monitoring process 24838...

== Target process exit.
== No expired memory blocks.

Test code below. Use by:

• Compile with g++ -g test.cc

• Run ./a.out

• In another window, attach memleakx to a.out.

• Go back to the window where a.out is running, and press [Enter]. Once you do that, test memory blocks are allocated, and the program sleeps for 30 seconds.

• memleax never reports any leaks, even though the blocks were allocated after memleax was attached, and live for more than the default 10 seconds.

Test code:

#include <cstdio>
#include <cstdlib>
#include <unistd.h>

class testclass {
public:
    int             a;
    int             b;

    testclass(void)
    {
        a = 0;
        b = 0;
    }
};


int main()
{
    testclass  *t;
    char       buf[1000];
    void       *m;

    // Wait for [Enter] to be pressed
    printf("Start? ");
    fflush(stdout);
    fgets(buf, sizeof(buf) - 1, stdin);

    printf("starting\n");
    t = new testclass();
    m = malloc(200);
    sleep(30);
    printf("done\n");
    return 0;
}

Hey, WuBingzheng!

Here's the reproduction steps:

1. Build the attached test app.
2. Launch the test app.
3. Launch memleax -p <test app pid>
4. Press Enter in the terminal where the test app runs.
5. The test app crashes with a segfault.

System info:

$ uname -r
3.10.0-693.21.1.el7.x86_64

test.zip

Thanks for developing such an awesome app!

_{Opening this on behalf of my colleague, who doesn't speak English.}

I used memleax to find a memory leak, thanks so much for this great tool!
Thanks @WuBingzheng!

I am trying to profile a init.d daemon and am having issues. Of course, trying to run: memleax <pid> will not work. When I run as superuser i.e. sudo memleax <pid>, I get the following message:

not found api: malloc

Is this recoverable at all?

It is stated in docs that

Valgrind starts target process, while memleax attaches to a running process;

But what should I do if want to attach to process ASAP? Is there a standard approach for it?

I've tried something like that:

#!/bin/bash
$@ &
pid=$!
kill -s STOP $pid
memleax -m1 -e1 $pid
kill -s CONT $pid
wait $pid

But I've get either a segfault or the following error:
Error in open /proc/pid/maps: No such file or directory

Can't compile under centos.

cmake reporting error:
None of the required 'libelf' found
Could not find libdw or libdwarf

but these libraries are installed:
yum install elfutils-libelf-devel
yum install libdwarf-devel

Hi,

memleax failed by exiting wiith read map error:

if (read(fd, ms->data, end - start) != end - start) {
    printf("Error: read map of %s\n", path);
    exit(6);
}

Cange it to:

if ( (readRet = read(fd, ms->data, end - start)) != end - start) {
printf("Error: read map of %s. read:%d should:%d errno:%d\n", path, readRet, end-start, errno);
// exit(6);
}

=> Error: read map of /lib/x86_64-linux-gnu/libgcc_s.so.1. read:90096 should:90112 errno:0

it seems that read() is returning less bytes than requested.
So I commented the exit points and it works.
Maybe you have time to investigate why this is happening.

Regards,
Catalin,.

Hi!

While investigating why Debian builds were failing for armhf and finding that libunwind wasn't being correctly detected, several people advised me to add either autotools or cmake support to memleax and to drop the hand-written configure. Have you already tried either of these, is there one you would prefer, and are you interested in adding the support yourself or would you like me to learn how to do this?

Sincerely,
Nicholas

https://tests.reproducible-builds.org/debian/rb-pkg/unstable/armhf/memleax.html

memleax crash on exit when debugging multi-thread program, if the program call malloc and free frequently. It happens randomly.

This bug is a general problem: how should ptrace detach a multi-thread program.

I would like to point out that identifiers like "_MLD_BREAKPOINT_" and "_MEMLEAKDETECTOR_" do not fit to the expected naming convention of the C language standard.
Would you like to adjust your selection for unique names?

Would you like to add more error handling for return values from functions like the following?

• malloc ⇒ callstack_string
• printf ⇒ main

While working in including memleax in Fedora repository, I noticed that
CMakeLists.txt included in master branch, is not included in tar.gz release file.
The tar.gz release file only contains configure.ac, that is not included in master branch.
Can we just use CMakeLists.txt which is the preferred way nowadays?
Thank you

Hello.
Is there any technical reason for not having a 32 bit version?
Thank you.

Are there any plans to add aarch64 support?
It won't cross-build but building on target I got it to configure but the compile fails with:

cc -DMLX_AARCH64 -DMLX_LINUX -DMLX_WITH_LIBDW -I/usr/include/elfutils/ -g -O2 -Wall -c -o breakpoint.o breakpoint.c
In file included from machines.h:4:0,
from breakpoint.c:15:
ptrace_utils.h: In function 'ptrace_get_regs':
ptrace_utils.h:25:9: error: 'PTRACE_GETREGS' undeclared (first use in this function)
ptrace(PTRACE_GETREGS, pid, 0, regs);
^
ptrace_utils.h:25:9: note: each undeclared identifier is reported only once for each function it appears in
ptrace_utils.h: In function 'ptrace_set_regs':
ptrace_utils.h:29:9: error: 'PTRACE_SETREGS' undeclared (first use in this function)
ptrace(PTRACE_SETREGS, pid, 0, regs);
^
breakpoint.c: In function 'do_breakpoint_init':
breakpoint.c:75:2: warning: implicit declaration of function 'set_breakpoint' [-Wimplicit-function-declaration]
set_breakpoint(pid, bp->entry_address, bp->entry_code);
^
: recipe for target 'breakpoint.o' failed
make: *** [breakpoint.o] Error 1

Hi,

I have added memleax to the FreeBSD ports collection, meaning it can now be installed on FreeBSD using:

pkg install memleax to install the package or cd /usr/ports/devel/memleax && make install clean to make and install from source.

Thanks for building a great tool!

Guy

I was trying memleax to see if it might help find a memory leak I'm seeing and I'm getting the following error:

Error: read maps of /usr/lib64/libaccountsservice.so.0.0.0: 524288 290784

I've attached the content of /proc/196557/maps for the process.

pmap-196557.txt

Running multiple times I sometimes get errors processing other pmap entries:

$ ~/OSS/memleax/memleax 196557
Error: read maps of /home/eng/mneilly/.config/dconf/user: 524288 6308
$ ~/OSS/memleax/memleax 196557
Error: read maps of /usr/share/fonts/abattis-cantarell/Cantarell-Bold.otf: 65536 54824

Hi!

Thank you for creating memleax. I've packaged it for Debian :-) https://packages.debian.org/sid/main/memleax

I'd also be happy to enable continuous integration using autopkgtest ( https://ci.debian.net/ ) if there are any self-tests that you'd like to run.

Finally, would you please let me know what architectures will not be supported in the future so that I can disable them? I think that it would be best to leave the ones for which support is planned enabled and let them fail (for now) on the Debian build servers, but I should explicitly disable support for the definitely unsupported ones.

The ones I'm not sure about these primary architectures: mips, mips64el, mipsel, powerpc, ppc64el, and s390x. There are more here https://buildd.debian.org/status/package.php?p=memleax&suite=unstable but they're secondary archs.

Sincerely,
Nicholas

P.S. if you're interested, here is the page for the requalification status for all primary archs for the next stable version. (Debian 10 aka "buster") https://release.debian.org/buster/arch_qualify.html

Thanks for putting this out! I looks to be a very useful adjunct to other tools like valgrind, and covers a scenario that valgrind really doesn't handle very well.

I'm trying to use memleax to diagnose a problem with memory growing over time while a process is running. valgrind reports no leaks at shutdown, but top shows memory increasing steadily until the process is terminated.

But I'm having a problem, and I think it may be that malloc is returning the same block address that was previously freed -- since the address is the same memleax thinks that it exceeds the expire time, when in reality it has just been malloc'd and free'd over and over again.

Do you know if that's possible with memleax? If so, can you help point me to the code in memleax that timestamps the allocation? Perhaps that is not being updated with subsequent allocations after the first?

Thanks again for a terrific tool, and for any help you may be able to provide.

Hi,

I have been trying to use memleax. Am observing the problem of memleax crashes the targetted/monitored process also after few repetitions of starting and killing the memleax using CTRL+C
I have gone thru the discussions in this regard and suggestion to use version 1.1.1-1 but still seeing the issue.

Please let me know if you have any input in this regard. Following are my system details.

Linux OS10 4.9.110 #1 SMP Debian 4.9.110-3+deb9u4 x86_64

Hi,

I have compiled memleax v1.1.1 sources for Photon OS, provided by vmware. I was able to compile the sources, and install it successfully. But it doesn't report any issues, for a sample code where i induced memory leak.

The tool outputs that it is monitoring the process, but no report generated.

Thanks

Hi WuBingzheng :

When I try to cross compile on ARM Platform, and the environment variables are as follows:

CC=arm-marvell-linux-gnueabi-gcc

I will get many compilation errors, does this support ARM platform ? thanks.

regards,
Kaloho

I couldn't compile it on Ubuntu 16.04 with libdwarf enabled.
Please provide the steps in README.

One issue I noticed when trying to debug a leak in a docker container was that proc/pid/maps is an access denied unless you start the container in privileged mode.

I wonder if we can add an option to specify the location of the map, that way I can copy it from the host into the container when we need to debug

I keep getting this when trying to tun memleax. Its a call to ptrace, and here is probably not the place for this, but if you have any guidance as to why this is the case, please let me know.

Hi

I have compiled memleax for monitoring one of the process's memory usage/leak which is built using qt. I could see after some time memleax is killed with out of memory error.

Please help me to understand the memleax usage for debugging run-time memory usage of already running process.

Thanks & Regards,

Steps:

1. memleax set breakpoints at the entry of malloc and free at beginning;
2. one thread runs in free;
3. memleax catches it, set a breakpoint at the exit of free, and deletes the breakpoint at the entry of free temporarily to let the thread continue;
4. if another thread runs in free now, memleax will miss it because the breakpoint is deleted!!! Then this memory block record will live for ever in memleax, and will be considered as a memory leak.

Similarly, if this happens at malloc, we will miss a memory block allocation.

Consider adding a section in the Readme comparing this to valgrind.