RH342 - ch10s04

Preface A: Introduction

Section A.1: Red Hat Enterprise Linux Diagnostics and Troubleshooting

Section A.2: Orientation to the Classroom Environment

Section A.3: Performing Lab Exercises

Chapter 1: Introducing Troubleshooting Strategy

Section 1.1: Using the Scientific Method

Section 1.2: Guided Exercise: Using the Scientific Method to Solve a Login Issue

Section 1.3: Collecting Information to Support Troubleshooting

Section 1.4: Guided Exercise: Collecting Information to Support Troubleshooting

Section 1.5: Troubleshooting with Red Hat Resources

Section 1.6: Guided Exercise: Troubleshooting with Red Hat Resources

Section 1.7: Lab: Introducing Troubleshooting Strategy

Section 1.8: Summary

Chapter 2: Configuring Baseline Data

Section 2.1: Monitoring Systems

Section 2.2: Guided Exercise: Monitoring Systems

Section 2.3: Configuring Remote Logging

Section 2.4: Guided Exercise: Configuring Remote Logging

Section 2.5: Describing Configuration Management Automation

Section 2.6: Guided Exercise: Implementing Configuration Changes with an Ansible Playbook

Section 2.7: Configuring Change Tracking

Section 2.8: Guided Exercise: Configuring Change Tracking

Section 2.9: Lab: Configuring Baseline Data

Section 2.10: Summary

Chapter 3: Troubleshooting Boot Issues

Section 3.1: Resolving Boot Loader Issues on BIOS Systems

Section 3.2: Guided Exercise: Resolving Boot Loader Issues on BIOS Systems

Section 3.3: Resolving Boot Loader Issues on UEFI Systems

Section 3.4: Quiz: Resolving Boot Loader Issues on UEFI Systems

Section 3.5: Identifying and Resolving Failing Services

Section 3.6: Guided Exercise: Identifying and Resolving Failing Services

Section 3.7: Resetting the root Password

Section 3.8: Guided Exercise: Resetting the root Password

Section 3.9: Lab: Troubleshooting Boot Issues

Section 3.10: Summary

Chapter 4: Identifying Hardware Issues

Section 4.1: Identifying Hardware Issues

Section 4.2: Guided Exercise: Identifying Hardware Issues

Section 4.3: Managing Kernel Modules

Section 4.4: Guided Exercise: Managing Kernel Modules

Section 4.5: Resolving Virtualization Issues

Section 4.6: Guided Exercise: Resolving Virtualization Issues

Section 4.7: Lab: Identifying Hardware Issues

Section 4.8: Summary

Chapter 5: Troubleshooting Storage Issues

Section 5.1: Describing the Linux Storage Stack

Section 5.2: Guided Exercise: Configuring Storage with Stratis

Section 5.3: Recovering from File System Corruption

Section 5.4: Guided Exercise: Recovering from File System Corruption

Section 5.5: Repairing LVM Issues

Section 5.6: Guided Exercise: Repairing LVM Issues

Section 5.7: Resolving Storage Device Encryption Issues

Section 5.8: Guided Exercise: Resolving Storage Device Encryption Issues

Section 5.9: Resolving iSCSI Issues

Section 5.10: Guided Exercise: Resolving iSCSI Issues

Section 5.11: Lab: Troubleshooting Storage Issues

Section 5.12: Summary

Chapter 6: Troubleshooting RPM Issues

Section 6.1: Resolving Package Dependency Issues

Section 6.2: Guided Exercise: Resolving Package Dependency Issues

Section 6.3: Recovering a Corrupted RPM Database

Section 6.4: Guided Exercise: Recovering a Corrupted RPM Database

Section 6.5: Identifying and Recovering RPM Managed Files

Section 6.6: Guided Exercise: Identifying and Recovering RPM Managed Files

Section 6.7: Managing Red Hat Subscriptions

Section 6.8: Quiz: Managing Red Hat Subscriptions

Section 6.9: Lab: Troubleshooting RPM Issues

Section 6.10: Summary

Chapter 7: Troubleshooting Network Issues

Section 7.1: Verifying Network Connectivity

Section 7.2: Guided Exercise: Verifying Network Connectivity

Section 7.3: Resolving Connectivity Issues

Section 7.4: Guided Exercise: Resolving Connectivity Issues

Section 7.5: Inspecting Network Traffic

Section 7.6: Guided Exercise: Inspecting Network Traffic

Section 7.7: Lab: Troubleshooting Network Issues

Section 7.8: Summary

Chapter 8: Troubleshooting Application Issues

Section 8.1: Resolving Library Dependencies

Section 8.2: Guided Exercise: Resolving Library Dependencies

Section 8.3: Debugging Memory Leaks

Section 8.4: Guided Exercise: Debugging Memory Leaks

Section 8.5: Debugging Application Execution

Section 8.6: Guided Exercise: Debugging Application Execution

Section 8.7: Troubleshooting Containerized Applications

Section 8.8: Guided Exercise: Troubleshooting Containerized Applications

Section 8.9: Lab: Troubleshooting Application Issues

Section 8.10: Summary

Chapter 9: Troubleshooting Security Issues

Section 9.1: Repairing SELinux Issues

Section 9.2: Guided Exercise: Repairing SELinux Issues

Section 9.3: Identifying Authentication Issues

Section 9.4: Guided Exercise: Identifying Authentication Issues

Section 9.5: Resolving Identity Management Issues

Section 9.6: Guided Exercise: Resolving Identity Management Issues

Section 9.7: Lab: Troubleshooting Security Issues

Section 9.8: Summary

Chapter 10: Troubleshooting Kernel Issues

Section 10.1: Configuring Kernel Crash Dumps

Section 10.2: Guided Exercise: Configuring Kernel Crash Dumps

Section 10.3: Kernel Debugging with SystemTap

SectionSection 10.4: Guided Exercise: Kernel Debugging with SystemTap

Section 10.5: Lab: Troubleshooting Kernel Issues

Section 10.6: Summary

Chapter 11: Comprehensive Review

Section 11.1: Comprehensive Review

Section 11.2: Lab: Repairing a Non-running Application

Section 11.3: Lab: Resolving a Console Login Issue

Section 11.4: Lab: Resolving Authentication Issues

Section 11.5: Lab: Repairing a Web Server Issue

Section 11.6: Lab: Resolving Network Delay Issues

Section 11.7: Lab: Resolving Container Issues

Bookmark this page

P 1 2 3 4 5 6 7 8 9 10 11

Guided Exercise: Kernel Debugging with SystemTap

Compile and distribute a System Tap module.

Outcomes

You should be able to compile a SystemTap program and execute it on another system.

As the student user on the workstation machine, use the lab command to prepare your system for this exercise.

[student@workstation ~]$ lab start kernel-debug

This command installs kernel debug packages and executes a script to increase disk I/O traffic on the /dev/vdb disk on the serverb system.

Instructions

A developer reports poor system performance on the serverb system. An administrator adds that recent diagnostics point to high system disk activities. The iostat utility reports heavy activity on the system's /dev/vdb secondary disk.

You are asked to determine which process is responsible for the heavy disk activity. Create and run a SystemTap probe that locates the root cause. Use the servera system to build the Systemtap probe. Enable the student user to reuse this probe in the future.

[student@workstation ~]$ ssh student@servera
...output omitted...
[student@servera ~]$ sudo -i
[sudo] password for student: student
[root@servera ~]#

Install the necessary SystemTap packages, compile tools, and debug dependencies on the servera system. Locate a suitable example script to use for this issue.

Install the systemtap package on the servera system.
The C compiler, libraries, build tools, kernel source code, and Perl tools are also pulled in as dependencies and installed.
```
[root@servera ~]# yum install systemtap
...output omitted...
Complete!
```

Verify that the kernel-debuginfo and kernel-devel packages are installed.

[root@servera ~]# rpm -q kernel-debuginfo kernel-devel
kernel-debuginfo-4.18.0-305.el8.x86_64
kernel-devel-4.18.0-305.el8.x86_64

List the available I/O example scripts from the systemtap package.

[root@servera ~]# ls -la /usr/share/systemtap/examples/io/
...output omitted...
-rw-r--r--.  1 root root  410 Mar 11  2021 iotop.meta
-rwxr-xr-x.  1 root root  624 Mar 11  2021 iotop.stp
...output omitted...

View the contents of the iotop.stp script file. This script displays the top 10 I/O processes every 5 seconds.

[root@servera ~]# cat /usr/share/systemtap/examples/io/iotop.stp
#!/usr/bin/stap

global reads, writes, total_io

...output omitted...

# print top 10 IO processes every 5 seconds
probe timer.s(5) {
    printf ("%16s\t%10s\t%10s\n", "Process", "KB Read", "KB Written")
    foreach (name in total_io @sum- limit 10)
        printf("%16s\t%10d\t%10d\n", name,
               @sum(reads[name])/1024, @sum(writes[name])/1024)
    delete reads
    delete writes
    delete total_io
    print("\n")
}

Prepare the iotop.stp script to analyze the serverb system, and copy the kernel module to the serverb system.

Compile the iotop.stp script file to generate the iotop.ko portable kernel module.

Ignore any warning messages after the iotop kernel module completes the Pass 1 step.

root@servera ~]# stap -v -p 4 -m iotop /usr/share/systemtap/examples/io/iotop.stp
Pass 1: parsed user script and 482 library scripts using 456012virt/88412res/12504shr/75468data kb, in 200usr/40sys/237real ms.
...output omitted...
Pass 2: analyzed script: 5 probes, 7 functions, 7 embeds, 35 globals using 688652virt/322008res/13676shr/308108data kb, in 3420usr/980sys/5467real ms.
Pass 3: translated to C into "/tmp/stapXQNYv1/iotop_src.c" using 688652virt/322136res/13804shr/308108data kb, in 30usr/60sys/79real ms.
iotop.ko
Pass 4: compiled C into "iotop.ko" in 15500usr/3160sys/11595real ms.

Open a second terminal, log in to the serverb system, and switch to the root user.

[student@workstation ~]$ ssh student@serverb
...output omitted...
[student@serverb ~]$ sudo -i
[sudo] password for student: student
[root@serverb ~]#

On the serverb system, create the SystemTap kernel module directory if it does not exist. Use the running kernel's version when naming the module directory.

[root@serverb ~]# ls -la /lib/modules/$(uname -r)/systemtap
ls: cannot access '/lib/modules/4.18.0-305.el8.x86_64/systemtap': No such file or directory
[root@serverb ~]# mkdir -p /lib/modules/$(uname -r)/systemtap

Copy the iotop.ko kernel module from the servera system to the SystemTap kernel module directory on the serverb system.

[root@serverb ~]# rsync -avz -e ssh root@servera:/root/iotop.ko /lib/modules/$(uname -r)/systemtap/
...output omitted...
root@servera's password: redhat
receiving incremental file list
iotop.ko

sent 43 bytes  received 610,648 bytes  135,709.11 bytes/sec
total size is 2,729,880  speedup is 4.47

Prepare the serverb system to use the SystemTap probe.
1. Install the systemtap-runtime package on the serverb system.
```
[root@serverb ~]# yum install systemtap-runtime
...output omitted...
Complete!
```
2. On the serverb system, configure the student user account to access the newly installed SystemTap kernel module. Add the student user to the stapusr group to run approved SystemTap kernel modules.
```
[root@serverb ~]# usermod -a -G stapusr student
```
3. On the serverb system, verify that the student user has the necessary memberships to run the SystemTap probe.
```
[root@serverb ~]# su - student
[student@serverb ~]$ id
uid=1000(student) gid=1000(student) groups=1000(student),10(wheel),156(stapusr) context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
```

Troubleshoot the disk activity issue.

Run the iotop module. Interrupt the command after a few iterations.

The output of the SystemTap program shows an increase in the I/O traffic by the dd command.

[student@serverb ~]$ staprun iotop
         Process     KB Read  KB Written
              dd       91060       91060
      irqbalance           3           0
   rs:main Q:Reg           0           0
    in:imjournal           0           0
  NetworkManager           0           0
          stapio           0           0
 systemd-journal           0           0

         Process     KB Read  KB Written
              dd       84680       84680
            sshd           0           0
          stapio           0           0
         systemd           0           0
  systemd-logind           0           0
    in:imjournal           0           0

         Process     KB Read  KB Written
              dd       86784       86784
      irqbalance           3           0
            sshd           0           0
          stapio           0           0
    in:imjournal           0           0
Ctrl+c

View additional details of the dd process to discover the command that spawned this process.

[student@serverb ~]$ ps -lef | grep -w dd
...output omitted...
0 D root        1787    1708  4  82   2 - 54281 -      08:56 ?        00:00:04 dd if=/dev/zero of=/dev/vdb bs=1024 count=1000000
0 D root        1788    1688  4  82   2 - 54281 -      08:56 ?        00:00:04 dd if=/dev/zero of=/dev/vdb bs=1024 count=1000000
0 S student    44848   25068  0  80   0 - 55482 -      08:58 pts/0    00:00:00 grep --color=auto dd

Note

The lab finish command removes the offending processes.

Log out of the serverb system and close the second terminal. Return to the workstation system as the student user.

[student@serverb ~]$ exit
[root@serverb ~]# exit
[student@serverb ~]$ exit
[student@workstation ~]$ exit

[root@servera rpm]# exit
[student@servera ~]$ exit
[student@workstation ~]$

Finish

On the workstation machine, use the lab command to complete this exercise. This is important to ensure that resources from previous exercises do not impact upcoming exercises.

[student@workstation ~]$ lab finish kernel-debug

Discuss Red Hat Enterprise Linux Diagnostics and Troubleshooting

Go to community

Welcome to the Red Hat Enterprise Linux Diagnostics and Troubleshooting (RH342) group!

cschunke

26 wrz 2023

We are excited to launch a space dedicated to the Red Hat Training course Red Hat Enterprise Linux Diagnostics and Troubleshooting! To gain the most value from this group - click the "Join Group" button in the upper right hand corner of the group home page.We encourage group members to collaborate in this group to discuss topics, ask questions, share best practices and tips, provide course feedback, and share their accomplishments as it relates to RH342.Read more about Red Hat Enterprise Linux Diagnostics and Troubleshooting here.

445

Revision: rh342-8.4-6dd89bd

Click Create to build all of the virtual machines needed for the classroom lab environment. This may take several minutes to complete. Once created the environment can then be stopped and restarted to pause your experience.
When a lab is created, click Start to run all of the virtual machines in the classroom.
Click Stop to stop all the virtual machines from running. This will not delete your lab.
If you Delete your lab, you will remove all of the virtual machines in your classroom and lose all of your progress.

Virtual machine actions

Click Start to power on the virtual machine.
Click Shutdown to gracefully shut down the virtual machine, preserving disk contents.
Click Power off to forcefully shut down the virtual machine, while still preserving disk contents.
Click Open console to connect to the system console of the virtual machine in a new browser.

Auto-stop timer

The Red Hat Learning Subscription entitles you to set allotment of lab time.
To help conserving your allotted time, the lab environment uses automatic timers to stop or destroy your lab environment when the timer expires.

Click the Auto-stop button [+] to extend the time you would like to spend with the labs.
Click the Auto-destroy button [+] to add day(s) to the auto-destroy timer.

Auto-stop has a maximum of 11 hours, and auto-destroy has a maximum of 14 days.
Be careful to keep the timers set while you are working, so that your environment doesn't shut down unexpectedly.
We also suggest not to set the auto-timers unnecessarily high, which could waste your lab time allotment