From: Grzegorz Nosek <root-AfQBxy1nhrQ00sYp1HPQUA@public.gmane.org>
Cc: containers-qjLDD68F18O7TbgM5vRIOg@public.gmane.org,
lxc-devel-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org
Subject: Re: BUG in tty_open when using containers and ptrace
Date: Sun, 5 Jul 2009 14:08:06 +0200 [thread overview]
Message-ID: <20090705120806.GA16706@megiteam.pl> (raw)
In-Reply-To: <20090704143412.GA27523-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
> That means that %rdx should contain tty->driver, but contains
> 0x6973646e65732f64, which looks like a part of '/etc/init.d/sendsigs'.
> So, we're possibly using an already freed and overwritten tty struct.
Okay, got another one:
Jul 5 13:47:29 sback kernel: [83780.950357] ------------[ cut here ]------------
Jul 5 13:47:29 sback kernel: [83780.950395] WARNING: at drivers/char/tty_io.c:1335 tty_open+0x245/0x423()
Jul 5 13:47:29 sback kernel: [83780.950426] Hardware name: S2891
Jul 5 13:47:29 sback kernel: [83780.950449] Modules linked in: veth ipt_MASQUERADE iptable_nat nf_nat nf_conntrack_ipv4 nf_defrag_ipv4 xt_state nf_conntrack ipt_REJECT bridge stp llc sha1_generic xt_SYSRQ compat_xtables ip6_tables xt_tcpudp iptable_filter ip_tables x_tables ipv6 w83627hf lm85 hwmon_vid loop evdev tg3 libphy k8temp shpchp pci_hotplug i2c_nforce2 i2c_core container button thermal processor thermal_sys
Jul 5 13:47:29 sback kernel: [83780.950668] Pid: 32628, comm: init Not tainted 2.6.30-sback #3
Jul 5 13:47:29 sback kernel: [83780.950697] Call Trace:
Jul 5 13:47:29 sback kernel: [83780.950723] [<ffffffff8043795e>] ? tty_open+0x245/0x423
Jul 5 13:47:29 sback kernel: [83780.950754] [<ffffffff802399d0>] warn_slowpath_common+0x7c/0xa9
Jul 5 13:47:29 sback kernel: [83780.950785] [<ffffffff80239a11>] warn_slowpath_null+0x14/0x16
Jul 5 13:47:29 sback kernel: [83780.950815] [<ffffffff8043795e>] tty_open+0x245/0x423
Jul 5 13:47:29 sback kernel: [83780.950846] [<ffffffff802d5b25>] chrdev_open+0x15f/0x17e
Jul 5 13:47:29 sback kernel: [83780.950878] [<ffffffff803baa3b>] ? selinux_dentry_open+0xf2/0xfb
Jul 5 13:47:29 sback kernel: [83780.950908] [<ffffffff802d59c6>] ? chrdev_open+0x0/0x17e
Jul 5 13:47:29 sback kernel: [83780.950939] [<ffffffff802d1082>] __dentry_open+0x155/0x274
Jul 5 13:47:29 sback kernel: [83780.950970] [<ffffffff802d1278>] nameidata_to_filp+0x46/0x57
Jul 5 13:47:29 sback kernel: [83780.951001] [<ffffffff802deb1b>] do_filp_open+0x4ca/0x924
Jul 5 13:47:29 sback kernel: [83780.951033] [<ffffffff802e7ce8>] ? alloc_fd+0x122/0x133
Jul 5 13:47:29 sback kernel: [83780.951063] [<ffffffff802d0e61>] do_sys_open+0x5b/0xdb
Jul 5 13:47:29 sback kernel: [83780.951093] [<ffffffff802d0f14>] sys_open+0x20/0x22
Jul 5 13:47:29 sback kernel: [83780.951124] [<ffffffff8020bc9b>] system_call_fastpath+0x16/0x1b
Jul 5 13:47:29 sback kernel: [83780.951154] ---[ end trace b453453d8c153fcc ]---
Jul 5 13:47:29 sback kernel: [83780.951187] BUG: unable to handle kernel NULL pointer dereference at 0000000000000008
Jul 5 13:47:29 sback kernel: [83780.951233] IP: [<ffffffff802d387f>] file_move+0x3c/0x55
Jul 5 13:47:29 sback kernel: [83780.951257] PGD 7bc58067 PUD 7bd8c067 PMD 0
Jul 5 13:47:29 sback kernel: [83780.951257] Oops: 0002 [#1] SMP
(ends here, no netconsole or anything and 'ssh tail -f' managed to only
get this far).
I didn't strace anything this time, was playing with libvirt's apparent
mishandling of container shutdown and I (eventually) sent SIGTERM and
then SIGINT to container init, which caused it first to reexec, and then
to exit. Immediately after sending SIGINT the box froze solid.
I remember that I have issued that same sequence when I got the first
crash, so it looks vaguely related.
Best regards,
Grzegorz Nosek
next prev parent reply other threads:[~2009-07-05 12:08 UTC|newest]
Thread overview: 40+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-04-12 13:45 BUG in tty_open when using containers and ptrace Môshe van der Sterre
2009-04-13 14:20 ` Serge E. Hallyn
[not found] ` <20090413142038.GB13007-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-07-04 13:28 ` Grzegorz Nosek
[not found] ` <20090704132851.GA16373-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-04 14:34 ` Grzegorz Nosek
[not found] ` <20090704143412.GA27523-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-05 12:08 ` Grzegorz Nosek [this message]
2009-07-07 3:31 ` Sukadev Bhattiprolu
[not found] ` <20090707033135.GA29461-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-07-07 7:34 ` Grzegorz Nosek
2009-07-08 10:54 ` Grzegorz Nosek
[not found] ` <20090708105417.GA16833-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-11 19:30 ` Grzegorz Nosek
[not found] ` <20090711193055.GA11303-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-11 20:01 ` Grzegorz Nosek
[not found] ` <20090711200133.GB11303-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-11 22:19 ` Alan Cox
[not found] ` <20090711231935.6ff59796-qBU/x9rampVanCEyBjwyrvXRex20P6io@public.gmane.org>
2009-07-12 7:49 ` Grzegorz Nosek
[not found] ` <20090712074932.GA17291-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-13 19:02 ` Serge E. Hallyn
[not found] ` <20090713190211.GA4208-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-07-13 19:30 ` Grzegorz Nosek
[not found] ` <20090713193058.GL18617-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-13 20:26 ` Serge E. Hallyn
[not found] ` <20090713202610.GA6447-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-07-13 22:34 ` Grzegorz Nosek
[not found] ` <20090713223444.GM18617-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-14 6:49 ` Sukadev Bhattiprolu
[not found] ` <20090714064905.GA25278-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-07-14 10:31 ` Grzegorz Nosek
[not found] ` <20090714103129.GB12958-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-15 4:47 ` Sukadev Bhattiprolu
[not found] ` <20090715044744.GA25745-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-07-15 5:42 ` Grzegorz Nosek
2009-07-15 13:19 ` Grzegorz Nosek
[not found] ` <20090715131923.GB21417-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-18 20:52 ` Sukadev Bhattiprolu
[not found] ` <20090718205244.GA23625-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-07-19 7:15 ` Grzegorz Nosek
[not found] ` <20090719071531.GA20818-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-22 6:41 ` Sukadev Bhattiprolu
[not found] ` <20090722064120.GA24373-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-07-22 22:25 ` Grzegorz Nosek
[not found] ` <20090722222550.GA633-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-23 1:27 ` Sukadev Bhattiprolu
[not found] ` <20090723012733.GB27764-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-07-23 1:48 ` H. Peter Anvin
[not found] ` <4A67C187.5000201-YMNOUZJC4hwAvxtiuMwx3w@public.gmane.org>
2009-07-23 7:47 ` Grzegorz Nosek
[not found] ` <20090723074736.GA20236-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-23 8:04 ` [lxc-devel] " Daniel Lezcano
2009-07-23 18:26 ` Grzegorz Nosek
[not found] ` <20090723182620.GA16322-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-23 19:32 ` Sukadev Bhattiprolu
[not found] ` <20090723193245.GA25662-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-07-23 20:33 ` Grzegorz Nosek
[not found] ` <20090723203329.GC16322-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-23 22:11 ` H. Peter Anvin
[not found] ` <4A68E026.1070608-YMNOUZJC4hwAvxtiuMwx3w@public.gmane.org>
2009-07-24 7:31 ` Grzegorz Nosek
[not found] ` <20090724073158.GA2617-yp6mvK3Bdd2rDJvtcaxF/A@public.gmane.org>
2009-07-30 18:06 ` Sukadev Bhattiprolu
[not found] ` <20090730180611.GA20872-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-07-30 18:44 ` Sukadev Bhattiprolu
2009-07-31 21:58 ` Grzegorz Nosek
2009-08-07 19:08 ` Sukadev Bhattiprolu
2009-07-05 20:00 ` Môshe van der Sterre
2009-07-05 20:35 ` Grzegorz Nosek
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20090705120806.GA16706@megiteam.pl \
--to=root-afqbxy1nhrq00syp1hpqua@public.gmane.org \
--cc=containers-qjLDD68F18O7TbgM5vRIOg@public.gmane.org \
--cc=lxc-devel-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox