Server died cause of no more disk space (temp session in /tmp do not get removed) #158
Conversation
on each rets request. This file is not used anymore once we get the gets server response and it didn't get removed. - /tmp folder was hardcoded, I've added a way to configure it into the configuration of the PHRets. By default it will be null.
not work if you pass a value (basic or digest) into the http_authentication. I've modify the code to be able to pass http_authentication = null when we set the config.
not work if you pass a value (basic or digest) into the http_authentication. I've modify the code to be able to pass http_authentication = null when we set the config.
|
I think by default, it should be /tmp like it was, with the ability to change it if you wish. Otherwise you could break a lot of existing code running on different server setups. I do like the idea of being able to specify the directory IF you don't want to use the /tmp default dir. |
|
I had a server die because of this. I'm willing to pick up this PR and make the changes needed to get it into master. @troydavisson |
|
I'd happily accept some feedback and other ideas for how to address this. A couple of issues that come to mind (some related to the code changes mentioned here, or just concerns generally):
I'm happy to discuss these on Slack with anyone interested in brainstorming a solution. |
|
@troydavisson I think the current code is using a different cookie for each request. |
|
My server also crashed yesterday and today because of this. My /tmp directory had 2.3 million of these phrets files built up from the last 6 months or so. So these files are never removed. I deleted all of them this morning, and I checked just now, and already have 42,000 of them back in the directory. Some kind of solution is needed here, and I greatly appreciate your time on this project. It has been an excellent resource for my company. Edit: I also thought it might be worth noting that all of the files (at least on my server) are empty. No session data is stored in them. They are all 0 byte files. The reason space runs out isn't actually due to storage capacity, but rather due to inode capacity. Each file has an inode entry that contains metadata about the file, so with these files never being removed, inode space is being maxed out. |
|
@fedeisas You are correct. Every request creates a new cookie with a unique name via tempnam. I had to get this fixed quickly so I added an unlink right before the request return: Session.php:428 unlink($options['curl'][CURLOPT_COOKIEFILE]); |
|
@DeskAgent I extended the I think this keep cookies in memory. |
|
This was a tough one to diagnose but I awoke a frantic cPanel VPS bawking about no disk space. Finally, i traced down an issue with /tmp being filled to the gills with phrets* files. Millions of them. The ls command took a very long time and displayed nothing. I was unable to use: No matter what I tried, i kept getting errors or issues. So here's my final solution which should help others out if they need a fix NOW and without modifying the PHRets library or waiting for fixes that may never come. To mitigate this problem you will need a shell with wheel privileges: $> cd /tmp && ls > list.txt Create a PHP file:. Call it "fix.php". Doesn't have to be PHP, but PHP is convenient and easier than shell script for most people.
After a potentially very long wait, you will have a delete.txt file. Now run: NOTE: If you want to keep the stock software unpatched library, then consider using the unix/linux scheduler for cleanup. $> crontab -e 0 /6 * * * find -name /tmp 'phrets' -exec rm {} ; >/dev/null 2>&1 |
SimpleXmlElement return an error when the content of the string is not valid UTF-8 chars. I've make sure the content is UTF-8. other chars get discarded
Bring Master project code changes to my fork
Could you provide a sample how you "extended" the something like class MySession extends Session { // What else would be needed? This session problem still persists so i'm looking at fixing with other options provided by others. My method is not a great option, but it solves the problem temporarily. Thanks. |
|
I had a similar case but we had around 20.5 million of these files in /tmp/ directory files, and even so, after this I removed files using this and then finally added a cron job in my root user using
this would delete these phrets* files older than 2 days every day around 2AM , hope it helps other dealing with the same issue! |
|
For those interested and able to test, I've pushed a branch which includes the proposed fix. https://packagist.org/packages/troydavisson/phrets#dev-cookie-files Please test that within your systems and see if that resolves your issue. |
|
@troydavisson thank you. Can you merge with main repo now? |
|
@troydavisson - the "All checks have passed" and "This branch has no conflicts..." messages lead me to believe that this fix has been merged. I've done a Composer Update, and am at 2.6.2 ( user agent string). I'm still seeing massive numbers of tmp files. Can you point me in the right direction? Thank you |
|
Yum update is for CentOS or Redhat based Linux distributions. You sought updating the operating system would update the software? That's not how this works. Please consider how the software was actually installed and look at what it would take to get it updated. What I would do is locate where this library is installed, take a snapshot of everything, then perhaps a composer update if you have a composer.json or.lock file in place.. but double check the contents of that composer.json file to make sure that it is reflecting that you've got phrets installed. If so it means you can run a composer update. Verify if everything is working. |
I am running CentOS. PHRets was installed via Composer. I did a 'composer update'. |
I don't know why i didn't get notification for your response. If you installed via composer, then you need to inspect the composer file and make sure it's not locked to a specific version of phrets you no longer desire to use. Composer references the version you are after, then run composer update. (After backing up your files, of course). |
|
@troydavisson really appreciate if you can merge this now. |
I've added code to remove the temporary session file that get create
on each rets request. This file is not used anymore once we get the
gets server response and it didn't get removed.
/tmp folder was hardcoded, I've added a way to configure it into the
configuration of the PHRets. By default it will be null.