Login/Register
Linux C catching kill signal for graceful termination
Asked Answered
Solved clinuxkill
L

3

20

I have a process using sockets, database connections and the likes. It is basically a server process relaying between sensor data and a web interface, and as such it is important to ensure the application, if killed, terminates gracefully.

How do I handle unexpected exceptions such as segfaults (at least for debugging) as well as kill signals so that I can close any connections and stop any threads running so that the process does not leave a mess of anything it is using?

Larianna answered 11/9, 2011 at 4:2 Comment(7)
Keep in mind continuing to run, even to clean up, may be dangerous after a segmentation fault.Distillate
Also keep in mind that you cannot catch kill signals.Pilfer
Not sure what mess you want to avoid. Killing threads, closing files and freeing memory is typically done by the OS very efficiently, so in most cases a simple exit would do the trick. Is there something specific you worry about?Korey
@gabe - it's better to say you can't catch SIGKILL as to not confuse people who have never used anything other than the command kill from the shell ;)Danyel
@Korey - catching SIGTERM and SIGINT is a very common practice to allow you to sanely exit.Danyel
@Soren: I don't know the OP's issues, but making sure that files are always in a consistent state, database transactions are rolled back, etc. often require cleanup that the OS can't handle just by exiting your process.Pilfer
possible duplicate of SIGKILL signal HandlerTimtima
K
9

You install signal handlers to catch signals -- however in 99% of cases you just want to exit and let the Linux OS take care of the cleanup -- it will happily close all files, sockets, free memory and shutdown threads.

So unless there is anything specifically you want to do, like sending a message on the sockets, then you should just exit from the process and not try to catch the signal.

Korey answered 11/9, 2011 at 4:14 Comment(7)
I think you are right here...application reliability is more important in my case and doing crazy stuff with signals could be bad. When a segfault happens, if I get coredumps, does it tell you where the segfault occured?Larianna
The calling stack tells you were the seg-fault occured, assuming the calling stack didn't get corrupted -- this question here : #106159 talks about how to get the stack traceKorey
Great advice. An exception to this rule is when you require to clean or change the hardware when a program shutdowns (in embeeded systems).Errhine
Old question but I still wonder what did you mean with the 99%?Cassis
What I mean is that unless you are a very seasoned programmer that knows exactly the reason for why the particular application should catch the signal, then you are likely better off not doing it at all.Korey
There are many memory errors with terminating a process when we execute large program using a profile tool or memory check tool to catch uncleaned memory. with this approach how can we correct memory errors ?Suit
@DigTheCode -- this sounds like a new question. Memory checking tools are there to show you memory leaks, and clearly you have not cleared the memory you are allocating, so that is what the tool is flagging up. Most tool reports, leaked memory separate from not lost but not freed either memory -- so in many cases you just have to interpret and understand your reports correctly.Korey
O
15

Catching signals is hard. You have to be careful. Your first step is to use sigaction to install a signal handler for the desired signals.

  • Choose a set of signals to respond to and choose what they mean for your process. For example, SIGTERM quits, SIGHUP restarts, SIGUSR1 reloads configuration, etc.

  • Don't try to respond to all signals and don't try to "clean up" after signal that indicates an error in your program. SIGKILL can't be caught. SIGSEGV, SIGBUS, and others like them shouldn't be caught unless you have a VERY good reason. If you want to debug, then raise the ulimit for core dumps — attaching a debugger to a core image is far more effective than anything you or I could ever code up. (If you do try to clean up after a SIGSEGV or something like that, realize that the cleanup code might cause an additional SIGSEGV and things could get bad quickly. Just avoid the whole mess and let SIGSEGV terminate your program.)

  • How you handle the signals is tricky. If your application has a main loop (e.g., select or poll) then the signal handler can just set a flag or write a byte to a special pipe to signal the main loop to quit. You can also use siglongjmp to jump out of a signal handler, but this is VERY difficult to get right and usually not what you want.

It's hard to recommend something without knowing how your application is structured and what it does.

Also remember that the signal handler itself should do almost nothing. Many functions are not safe to call from signal handlers.

Oswin answered 11/9, 2011 at 4:26 Comment(0)
W
10

I sometimes like to get a backtrace on SIGSEGV, the catching part goes like:

#include <stdio.h>
#include <stdlib.h>
#include <signal.h>

void sig_handler(int);

int main() {
    signal(SIGSEGV, sig_handler);
    int *p = NULL;
    return *p;
}

void sig_handler(int sig) {
    switch (sig) {
    case SIGSEGV:
        fprintf(stderr, "give out a backtrace or something...\n");
        abort();
    default:
        fprintf(stderr, "wasn't expecting that!\n");
        abort();
    }
}

You do want to be very careful handling these things, e.g. make sure you can't trigger another signal.

Watkin answered 11/9, 2011 at 4:25 Comment(4)
Isn't it easier to use ulimit to get core dumps and get the stack trace that way?Oswin
not familiar with that approach, can you elaborate? I only use this stuff for debugging btw, i.e. I make an error and want to see where the signal came from straight away.Watkin
You really shouldn't be using signal. For years it has been recommended not to do so and to use sigaction instead. From man signal: The behavior of signal() varies across Unix versions, and has also varied historically across different versions of Linux. Avoid its use: use sigaction(2) instead.. I'm not downvoting ... but it's close. You shouldn't recommend anyone to use it.Danyel
The ulimit command allows you to make it so programs dump core on SIGSEGV. A core file is a copy of the memory image of your program, and you can attach a debugger to it and poke around in memory (get stack traces, examine variables), or send the core file to the developer if it's not your program.Oswin
K
9

You install signal handlers to catch signals -- however in 99% of cases you just want to exit and let the Linux OS take care of the cleanup -- it will happily close all files, sockets, free memory and shutdown threads.

So unless there is anything specifically you want to do, like sending a message on the sockets, then you should just exit from the process and not try to catch the signal.

Korey answered 11/9, 2011 at 4:14 Comment(7)
I think you are right here...application reliability is more important in my case and doing crazy stuff with signals could be bad. When a segfault happens, if I get coredumps, does it tell you where the segfault occured?Larianna
The calling stack tells you were the seg-fault occured, assuming the calling stack didn't get corrupted -- this question here : #106159 talks about how to get the stack traceKorey
Great advice. An exception to this rule is when you require to clean or change the hardware when a program shutdowns (in embeeded systems).Errhine
Old question but I still wonder what did you mean with the 99%?Cassis
What I mean is that unless you are a very seasoned programmer that knows exactly the reason for why the particular application should catch the signal, then you are likely better off not doing it at all.Korey
There are many memory errors with terminating a process when we execute large program using a profile tool or memory check tool to catch uncleaned memory. with this approach how can we correct memory errors ?Suit
@DigTheCode -- this sounds like a new question. Memory checking tools are there to show you memory leaks, and clearly you have not cleared the memory you are allocating, so that is what the tool is flagging up. Most tool reports, leaked memory separate from not lost but not freed either memory -- so in many cases you just have to interpret and understand your reports correctly.Korey

© 2022 - 2024 — McMap. All rights reserved.