Home Explore Help
Sign In
lqb
/
elasticsearch
mirror of https://gitee.com/mirrors/elasticsearch.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: a4de6bd14a
Branches Tags
elasticsearch
/
docs
/
reference
/
setup
/
sysconfig
/
executable-jna-tmpdir.asciidoc

executable-jna-tmpdir.asciidoc 2.4 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051 
  1. [[executable-jna-tmpdir]]
    2. 

  2. === Ensure JNA temporary directory permits executables
    3. 

  3. 

  4. [NOTE]
    5. 

  5. This is only relevant for Linux.
    6. 

  6. 

  7. {es} uses the Java Native Access (JNA) library, and another library called
    8. 

  8. `libffi`, for executing some platform-dependent native code. On Linux, the
    9. 

  9. native code backing these libraries is extracted at runtime into a temporary
    10. 

  10. directory and then mapped into executable pages in {es}'s address space. This
    11. 

  11. requires the underlying files not to be on a filesystem mounted with the
    12. 

  12. `noexec` option.
    13. 

  13. 

  14. By default, {es} will create its temporary directory within `/tmp`. However,
    15. 

  15. some hardened Linux installations mount `/tmp` with the `noexec` option by
    16. 

  16. default. This prevents JNA and `libffi` from working correctly. For instance,
    17. 

  17. at startup JNA may fail to load with an `java.lang.UnsatisfiedLinkerError`
    18. 

  18. exception or with a message that says something similar to
    19. 

  19. `failed to map segment from shared object`, or `libffi` may report a message
    20. 

  20. such as `failed to allocate closure`. Note that the exception messages can
    21. 

  21. differ between JVM versions. Additionally, the components of {es} that rely on
    22. 

  22. execution of native code via JNA may fail with messages indicating that it is
    23. 

  23. `because JNA is not available`.
    24. 

  24. 

  25. To resolve these problems, either remove the `noexec` option from your `/tmp`
    26. 

  26. filesystem, or configure {es} to use a different location for its temporary
    27. 

  27. directory by setting the <<es-tmpdir,`$ES_TMPDIR`>> environment variable. For
    28. 

  28. instance:
    29. 

  29. 

  30. * If you are running {es} directly from a shell, set `$ES_TMPDIR` as follows:
    31. 

  31. +
    32. 

  32. ["source","sh",subs="attributes"]
    33. 

  33. --------------------------------------------
    34. 

  34. export ES_TMPDIR=/usr/share/elasticsearch/tmp
    35. 

  35. --------------------------------------------
    36. 

  36. 

  37. * If you are using `systemd` to run {es} as a service, using the `systemctl`
    38. 

  38. command, add the following line to the `[Service]` section of your
    39. 

  39. `elasticsearch.service` unit file:
    40. 

  40. +
    41. 

  41. [source,text]
    42. 

  42. --------------------------------------------
    43. 

  43. Environment=ES_TMPDIR=/usr/share/elasticsearch/tmp
    44. 

  44. --------------------------------------------
    45. 

  45. 

  46. If you need finer control over the location of these temporary files, you can
    47. 

  47. also configure the path that JNA uses with the <<set-jvm-options,JVM flag>>
    48. 

  48. `-Djna.tmpdir=<path>` and you can configure the path that `libffi` uses for its
    49. 

  49. temporary files by setting the `LIBFFI_TMPDIR` environment variable. Future
    50. 

  50. versions of {es} may need additional configuration, so you should prefer to set
    51. 

  51. `ES_TMPDIR` wherever possible.
    52.