nbd-server dies due to EFAULT from read

Debian Bug report logs - #611187
nbd-server dies due to EFAULT from read

Toggle useless messages

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Ian Jackson <Ian.Jackson@eu.citrix.com>

To: submit@bugs.debian.org

Subject: nbd-server dies due to EFAULT from read

Date: Wed, 26 Jan 2011 14:48:50 +0000

Package: nbd-server
Version: 1:2.9.11-3

In an automatic test system (used by xen upstream) I encountered this
failure:

 Jan 25 16:12:36 leaf-beetle nbd_server[20034]: Read failed: Bad address
 Jan 25 16:12:36 leaf-beetle nbd_server[20033]: Child exited with 1

The client naturally then saw a series of IO failures and was
generally very unhappy.

The problem is not easily reproducible.  I have seen similar failures
before but they are very infrequent.

The configuration in this case was:

 * Two NBDs: each one of an LVM volume on the server imported by the client
 * Each LVM VG backed by a single PV on a physical disk partition
 * Both hosts' hardware: rackservers.com AMD-based server
 * Both hosts' userland: amd64 lenny userland
 * Both hosts' kernel: Xen-enabled xen.org kernel derived from 2.6.32.27
 * Both hosts' hypervisor: xen-unstable 4.1.0 RC2+
 * nbd server hostname: leaf-beetle
 * nbd client hostname: potato-beetle

Full logs can be found here for the next few weeks:
  http://www.chiark.greenend.org.uk/~xensrcts/logs/5238/test-amd64-amd64-pair/info.html

I appreciate that this isn't very much to go on.  If you would like to
suggest some additional instrumentation, or additional logs to
capture, I will be happy to add that to my test machinery and then
report the results as and when the bug recurs.

Thanks,
Ian.

Here is a copy of the /etc/nbd-server/config from the server:

# generated by ./ts-guests-nbd-mirror
[generic]
    user = root
[export0]
    exportname = /dev/leaf-beetle.cam.xci-test.com/debian.guest.osstest-disk
    port = 4000
[export1]
    exportname = /dev/leaf-beetle.cam.xci-test.com/debian.guest.osstest-swap
    port = 4001

Message #14 received at 611187-close@bugs.debian.org (full text, mbox, reply):

From: Wouter Verhelst <wouter@debian.org>

To: 611187-close@bugs.debian.org

Subject: Bug#611187: fixed in nbd 1:2.9.16-8

Date: Fri, 28 Jan 2011 13:32:11 +0000

Source: nbd
Source-Version: 1:2.9.16-8

We believe that the bug you reported is fixed in the latest version of
nbd, which is due to be installed in the Debian FTP archive:

nbd-client-udeb_2.9.16-8_amd64.udeb
  to main/n/nbd/nbd-client-udeb_2.9.16-8_amd64.udeb
nbd-client_2.9.16-8_amd64.deb
  to main/n/nbd/nbd-client_2.9.16-8_amd64.deb
nbd-server_2.9.16-8_amd64.deb
  to main/n/nbd/nbd-server_2.9.16-8_amd64.deb
nbd_2.9.16-8.diff.gz
  to main/n/nbd/nbd_2.9.16-8.diff.gz
nbd_2.9.16-8.dsc
  to main/n/nbd/nbd_2.9.16-8.dsc



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 611187@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Wouter Verhelst <wouter@debian.org> (supplier of updated nbd package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Fri, 28 Jan 2011 14:06:48 +0100
Source: nbd
Binary: nbd-server nbd-client nbd-client-udeb
Architecture: source amd64
Version: 1:2.9.16-8
Distribution: unstable
Urgency: high
Maintainer: Wouter Verhelst <wouter@debian.org>
Changed-By: Wouter Verhelst <wouter@debian.org>
Description: 
 nbd-client - Network Block Device protocol - client
 nbd-client-udeb - Network Block Device protocol - client for Debian Installer (udeb)
 nbd-server - Network Block Device protocol - server
Closes: 611187
Changes: 
 nbd (1:2.9.16-8) unstable; urgency=high
 .
   * Cherry-pick 3ef52043861ab16352d49af89e048ba6339d6df8 from git HEAD
     to fix oversized requests again. This Closes: #611187, which is a
     re-introduction of CVE-2005-3534, hence urgency=high
Checksums-Sha1: 
 7ef445c4e29aea243f657c98b7b6c7983e8404d1 1771 nbd_2.9.16-8.dsc
 07fbf38bf5bede1d72f0aab95b0961e9f0fc0a13 84557 nbd_2.9.16-8.diff.gz
 2283e8923c9868341b73ae43a526911a57eee292 60448 nbd-server_2.9.16-8_amd64.deb
 f1ee5b58c7b90140bf2724d385c75ecd8f5f5568 50858 nbd-client_2.9.16-8_amd64.deb
 135d5251f4c21389fe27df1f34581b092bb4d34d 6950 nbd-client-udeb_2.9.16-8_amd64.udeb
Checksums-Sha256: 
 88597bf9ce3b722a4b7d72899bb9c89453dff0608411ec4be426a66fd025a31b 1771 nbd_2.9.16-8.dsc
 0a9053ba4ac4bf6e9a49279b93317f24431f7df9ee1329ea1a958791d4488050 84557 nbd_2.9.16-8.diff.gz
 46a1a160bfb29ee37af7262b81c72edaa72549a20cdd1441d6413d6a7613e069 60448 nbd-server_2.9.16-8_amd64.deb
 cba562dd67877795faf03883a7b03698731ae930e86f2be6c54700f22c85fd81 50858 nbd-client_2.9.16-8_amd64.deb
 501c2cfefe62f721f15d68bc6ea38bbc0d1b43facf37e3de1320a92f06e74003 6950 nbd-client-udeb_2.9.16-8_amd64.udeb
Files: 
 c4edcb1dc45c72b35778f29a62f1160e 1771 admin optional nbd_2.9.16-8.dsc
 edc1a461fabddda47a1f845fd6a6f3b4 84557 admin optional nbd_2.9.16-8.diff.gz
 d6bb85404c6effbff4517e0b312784e2 60448 admin optional nbd-server_2.9.16-8_amd64.deb
 fd4244a9c8dfda5faa4e64c95924c347 50858 admin optional nbd-client_2.9.16-8_amd64.deb
 24ca9e6df7f6808c6e6dbecc7694ec35 6950 debian-installer optional nbd-client-udeb_2.9.16-8_amd64.udeb
Package-Type: udeb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
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=PDhp
-----END PGP SIGNATURE-----

Message #19 received at 611187-close@bugs.debian.org (full text, mbox, reply):

From: Wouter Verhelst <wouter@debian.org>

To: 611187-close@bugs.debian.org

Subject: Bug#611187: fixed in nbd 1:2.9.20-1~1

Date: Mon, 31 Jan 2011 11:17:07 +0000

Source: nbd
Source-Version: 1:2.9.20-1~1

We believe that the bug you reported is fixed in the latest version of
nbd, which is due to be installed in the Debian FTP archive:

nbd-client-udeb_2.9.20-1~1_amd64.udeb
  to main/n/nbd/nbd-client-udeb_2.9.20-1~1_amd64.udeb
nbd-client_2.9.20-1~1_amd64.deb
  to main/n/nbd/nbd-client_2.9.20-1~1_amd64.deb
nbd-server_2.9.20-1~1_amd64.deb
  to main/n/nbd/nbd-server_2.9.20-1~1_amd64.deb
nbd_2.9.20-1~1.diff.gz
  to main/n/nbd/nbd_2.9.20-1~1.diff.gz
nbd_2.9.20-1~1.dsc
  to main/n/nbd/nbd_2.9.20-1~1.dsc
nbd_2.9.20.orig.tar.gz
  to main/n/nbd/nbd_2.9.20.orig.tar.gz



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 611187@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Wouter Verhelst <wouter@debian.org> (supplier of updated nbd package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Wed, 26 Jan 2011 15:59:24 +0100
Source: nbd
Binary: nbd-server nbd-client nbd-client-udeb
Architecture: source amd64
Version: 1:2.9.20-1~1
Distribution: unstable
Urgency: low
Maintainer: Wouter Verhelst <wouter@debian.org>
Changed-By: Wouter Verhelst <wouter@debian.org>
Description: 
 nbd-client - Network Block Device protocol - client
 nbd-client-udeb - Network Block Device protocol - client for Debian Installer (udeb)
 nbd-server - Network Block Device protocol - server
Closes: 611187
Changes: 
 nbd (1:2.9.20-1~1) unstable; urgency=low
 .
   * New upstream release
     - Fixes old minor bugs in documentation (LP: #290076)
     - Fixes handling of oversized requests (Closes: #611187)
Checksums-Sha1: 
 b6e018de0fa429b64372213dbdfd0ad7392bfe98 1779 nbd_2.9.20-1~1.dsc
 9c6f175ee2b8eb79fe6621ccf36e5b1e283d7a21 187267 nbd_2.9.20.orig.tar.gz
 a5d5227c97e10145d064bd0ab1972180f1e73b51 82022 nbd_2.9.20-1~1.diff.gz
 4e567bbcd5b7b22b3cebd64a3c2a4705ab40e199 61612 nbd-server_2.9.20-1~1_amd64.deb
 a4e565165866aa0e543e5d6deb372cf8c5fbb68d 52752 nbd-client_2.9.20-1~1_amd64.deb
 8f66433baa5f4021e50180106e35f63229caf966 7670 nbd-client-udeb_2.9.20-1~1_amd64.udeb
Checksums-Sha256: 
 93dadf33382873898d0416dc764c1c5dd69b9360eb2f6fec9a3b84da5f04a2eb 1779 nbd_2.9.20-1~1.dsc
 3b36d0fda3f68529df08c2ff1a253e567440b963bdd5c256e94978ad0596b135 187267 nbd_2.9.20.orig.tar.gz
 5abf2b362862882329920e128156080596f4330ad6b7d9f90668d20a358e9f29 82022 nbd_2.9.20-1~1.diff.gz
 054066b326f0b5c610f78c24a0055bcfab86e2cacc7617b5f7be541445ecac5f 61612 nbd-server_2.9.20-1~1_amd64.deb
 2b5d38cd87dbb38f7e494a650345a2257d23fd3e80e51ba850ce8a32d7c9e835 52752 nbd-client_2.9.20-1~1_amd64.deb
 64502064396125a4f91c31a4cfbe2718ae19bd3ac7bbb98a2881e4b06dccdc97 7670 nbd-client-udeb_2.9.20-1~1_amd64.udeb
Files: 
 c9ccf1cd0dd15aaf247311433d2692f7 1779 admin optional nbd_2.9.20-1~1.dsc
 d92b47b9a35c0170fc60488da3d20e44 187267 admin optional nbd_2.9.20.orig.tar.gz
 9813abadbd042512d33d7380d6ff0242 82022 admin optional nbd_2.9.20-1~1.diff.gz
 c65699ccb589c02e303d3559190f4bc0 61612 admin optional nbd-server_2.9.20-1~1_amd64.deb
 abcc7661b1f3901200ab7cfe6c028c5a 52752 admin optional nbd-client_2.9.20-1~1_amd64.deb
 a2553c36aa662939d9449ab2a590f741 7670 debian-installer optional nbd-client-udeb_2.9.20-1~1_amd64.udeb
Package-Type: udeb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
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=pe70
-----END PGP SIGNATURE-----

Message #24 received at 611187-close@bugs.debian.org (full text, mbox, reply):

From: Wouter Verhelst <wouter@debian.org>

To: 611187-close@bugs.debian.org

Subject: Bug#611187: fixed in nbd 1:2.9.11-3lenny1

Date: Sat, 05 Mar 2011 19:57:16 +0000

Source: nbd
Source-Version: 1:2.9.11-3lenny1

We believe that the bug you reported is fixed in the latest version of
nbd, which is due to be installed in the Debian FTP archive:

nbd-client-udeb_2.9.11-3lenny1_amd64.udeb
  to main/n/nbd/nbd-client-udeb_2.9.11-3lenny1_amd64.udeb
nbd-client_2.9.11-3lenny1_amd64.deb
  to main/n/nbd/nbd-client_2.9.11-3lenny1_amd64.deb
nbd-server_2.9.11-3lenny1_amd64.deb
  to main/n/nbd/nbd-server_2.9.11-3lenny1_amd64.deb
nbd_2.9.11-3lenny1.diff.gz
  to main/n/nbd/nbd_2.9.11-3lenny1.diff.gz
nbd_2.9.11-3lenny1.dsc
  to main/n/nbd/nbd_2.9.11-3lenny1.dsc



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 611187@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Wouter Verhelst <wouter@debian.org> (supplier of updated nbd package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Wed, 23 Feb 2011 19:34:12 +0100
Source: nbd
Binary: nbd-server nbd-client nbd-client-udeb
Architecture: source amd64
Version: 1:2.9.11-3lenny1
Distribution: oldstable-security
Urgency: low
Maintainer: Wouter Verhelst <wouter@debian.org>
Changed-By: Wouter Verhelst <wouter@debian.org>
Description: 
 nbd-client - the Network Block Device client
 nbd-client-udeb - the Network Block Device client (udeb)
 nbd-server - the Network Block Device server
Closes: 611187
Changes: 
 nbd (1:2.9.11-3lenny1) oldstable-security; urgency=low
 .
   * Cherry-pick commit 3ef52043861ab16352d49af89e048ba6339d6df8 from
     upstream git repo to fix buffer size check in nbd-server. Closes:
     #611187, CVE-2011-0530.
Checksums-Sha1: 
 38541ae9e582501842b657dedd4ab961dbe24f35 1643 nbd_2.9.11-3lenny1.dsc
 adad68a3684e0a4480bde071e987c0b6621aaf79 215217 nbd_2.9.11.orig.tar.gz
 461481809278fa4226eb92ce9cbe502c2d260c6b 54044 nbd_2.9.11-3lenny1.diff.gz
 9053ac84f0f275ed6ff24765d0001b4b2bfdebc2 50616 nbd-server_2.9.11-3lenny1_amd64.deb
 4c814434d1bfc9b002481d12e4df9b9fa4f4f027 41324 nbd-client_2.9.11-3lenny1_amd64.deb
 cfa38c3527c54a815b5aacfe9c83a4707651f36b 6046 nbd-client-udeb_2.9.11-3lenny1_amd64.udeb
Checksums-Sha256: 
 38842ca7cfee0e5b4875df81e6e9de886b2b8721251e479e96909ad00ab466f1 1643 nbd_2.9.11-3lenny1.dsc
 af41a19c60894a44605a14228dc36fa8779adbb220f9004acf963cbfc4117199 215217 nbd_2.9.11.orig.tar.gz
 59be681221ced6cc2de4c26ffdbf393ba295c099369362ca893ac22dbfe06641 54044 nbd_2.9.11-3lenny1.diff.gz
 cde93fcf36873f8fb6f2b013a54b82a562afd393818eea00eedeb478588a20de 50616 nbd-server_2.9.11-3lenny1_amd64.deb
 4a823a7696301fadce1d3834e6e2f0ce7c70f8ad9a3b3c8ba64387725409f817 41324 nbd-client_2.9.11-3lenny1_amd64.deb
 9e93859798fd26eadd54e83e4f1b099d98c5968be5de700a1fa7d90c42af8a9d 6046 nbd-client-udeb_2.9.11-3lenny1_amd64.udeb
Files: 
 0aa1b4222f2356d121a7f6bca2c0eb4d 1643 admin optional nbd_2.9.11-3lenny1.dsc
 7fdd912edba85b82f599e17449ccea40 215217 admin optional nbd_2.9.11.orig.tar.gz
 e36778d15aa13d8d8f3bb8929756d396 54044 admin optional nbd_2.9.11-3lenny1.diff.gz
 ae384b75630d1a54b49c3ecf02be54b8 50616 admin optional nbd-server_2.9.11-3lenny1_amd64.deb
 733363b5666ad6f989adec1df88b006e 41324 admin optional nbd-client_2.9.11-3lenny1_amd64.deb
 16cfc2432ef7dbcbbe8ee0a6c478d3d1 6046 debian-installer optional nbd-client-udeb_2.9.11-3lenny1_amd64.udeb
Package-Type: udeb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
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=XDae
-----END PGP SIGNATURE-----

Send a report that this bug log contains spam.