Bug#809834: marked as done (linux: jessie-security regression: aufs/docker hang caused by "mm: make sendfile(2) killable")
Your message dated Sat, 26 Mar 2016 20:49:15 +0100
with message-id <20160326194915.GA26733@eldamar.local>
and subject line Re: Bug#809834: aufs issue appears to be fixed
has caused the Debian Bug report #809834,
regarding linux: jessie-security regression: aufs/docker hang caused by "mm: make sendfile(2) killable"
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)
--
809834: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809834
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: submit@bugs.debian.org
- Subject: linux: jessie-security regression: aufs/docker hang caused by "mm: make sendfile(2) killable"
- From: Dominic Hargreaves <dom@earth.li>
- Date: Mon, 4 Jan 2016 15:12:09 +0000
- Message-id: <20160104151208.GR6657@urchin.earth.li>
Package: linux-image-3.16.0-4-amd64
Version: 3.16.7-ckt20-1+deb8u1
Severity: important
As described in [1] a commit from 3.16.7-ckt20 [2] included in
3.16.7-ckt20-1+deb8u1 in Debian causes a regression meaning java
processes hang whilst exiting. Most commonly this is observed in docker
setups.
Although the change wasn't in the AUFS code, the AUFS developers have
said that it should be fixed in AUFS[3]. Such a change would be a strong
candidate for inclusion in a future update.
It appears that the change in Linux is potentially security-relevant, so
reverting it doesn't seem to be an option.
Meanwhile the most obvious workaroud is to revert to 3.16.7-ckt11-1+deb8u3.
A side note: I was unable to browse bugs reported against src:linux in
the BTS today (HTTP 500 error, reported to owner@) so apologies if this
is a duplicate - but I couldn't see anything relevant in the debian-kernel
archives.
Thanks,
Dominic.
[1] <https://github.com/docker/docker/issues/18180>
[2] <http://kernel.ubuntu.com/git/ubuntu/linux.git/commit/?h=linux-3.16.y&id=475a23000dd8d2f264bab9d6eb71a2a6b9d4de72>
[3] <http://article.gmane.org/gmane.linux.file-systems.aufs.user/5343>
--- End Message ---
--- Begin Message ---
Source: linux
Source-Version: 3.16.7-ckt20-1+deb8u4
Hi Dominic,
On Mon, Mar 21, 2016 at 03:20:22PM +0000, Dominic Hargreaves wrote:
> This appears to have been fixed in #812207 so this probably needs
> to be merged or otherwise closed (incidentally, it appears that
> reporting the bug against a real package wasn't enough for it to get
> attention ;)
Thanks for pointing it out. Closing it with the version appropriately.
Regards,
Salvatore
--- End Message ---
Reply to: