Bug#704175: marked as done (isc-dhcp-server: init script removes dhcpd.pid)

Sat, 05 Sep 2015 21:37:07 -0700 

Your message dated Sun, 06 Sep 2015 04:34:17 +0000
with message-id <[email protected]>
and subject line Bug#704175: fixed in isc-dhcp 4.3.3-2
has caused the Debian Bug report #704175,
regarding isc-dhcp-server: init script removes dhcpd.pid
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
704175: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704175
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: isc-dhcp-server
Version: 4.2.4-5
Severity: important

Dear Maintainer,

In debian/isc-dhcp-server.init.d, there is the following code:

        stop)
                log_daemon_msg "Stopping $DESC" "$NAME"
                start-stop-daemon --stop --quiet --pidfile "$DHCPD_PID"
                log_end_msg $?
                rm -f "$DHCPD_PID"
                ;;

So, you can end up in a situation like this:
   process a: stops dhcpd
   process b: starts dhcpd, which writes pid file
   process a: removes pid file
   process a: starts dhcpd, which writes another pid file

Here's an strace from when I removed the pidfile and started dhcpd
immediately afterwards, while another dhcpd was running:

10698 13:47:26 bind(5, {sa_family=AF_PACKET, proto=0x6574, if12392, 
pkttype=PACKET_HOST, addr(0)={0, }, 16) = 0
10698 13:47:26 socket(PF_INET, SOCK_DGRAM, IPPROTO_IP) = 7
10698 13:47:26 ioctl(7, SIOCGIFHWADDR, {ifr_name="eth0", 
ifr_hwaddr=aa:00:00:15:cb:1d}) = 0
10698 13:47:26 close(7)                 = 0
10698 13:47:26 setsockopt(5, SOL_SOCKET, SO_ATTACH_FILTER, 
"\v\0\0\0\0\0\0\0\340\373\237/\35\177\0\0", 16) = 0
10698 13:47:26 fcntl(5, F_SETFD, FD_CLOEXEC) = 0
10698 13:47:26 socket(PF_PACKET, SOCK_PACKET, 768) = 7
10698 13:47:26 bind(7, {sa_family=AF_PACKET, proto=0x6c6f, if0, 
pkttype=PACKET_HOST, addr(0)={0, }, 16) = 0
10698 13:47:26 socket(PF_INET, SOCK_DGRAM, IPPROTO_IP) = 8
10698 13:47:26 ioctl(8, SIOCGIFHWADDR, {ifr_name="lo", 
ifr_hwaddr=00:00:00:00:00:00}) = 0
10698 13:47:26 close(8)                 = 0
10698 13:47:26 setsockopt(7, SOL_SOCKET, SO_ATTACH_FILTER, 
"\v\0\0\0\0\0\0\0\340\373\237/\35\177\0\0", 16) = 0
10698 13:47:26 fcntl(7, F_SETFD, FD_CLOEXEC) = 0
10698 13:47:26 socket(PF_INET, SOCK_DGRAM, IPPROTO_UDP) = 8
10698 13:47:26 setsockopt(8, SOL_SOCKET, SO_REUSEADDR, [1], 4) = 0
10698 13:47:26 bind(8, {sa_family=AF_INET, sin_port=htons(67), 
sin_addr=inet_addr("0.0.0.0")}, 16) = 0
10698 13:47:26 fcntl(8, F_SETFD, FD_CLOEXEC) = 0
10698 13:47:26 socket(PF_INET, SOCK_STREAM, IPPROTO_TCP) = 9
10698 13:47:26 fcntl(9, F_SETFD, FD_CLOEXEC) = 0
10698 13:47:26 setsockopt(9, SOL_SOCKET, SO_REUSEADDR, [1], 4) = 0
10698 13:47:26 bind(9, {sa_family=AF_INET, sin_port=htons(7911), 
sin_addr=inet_addr("0.0.0.0")}, 16) = -1 EADDRINUSE (Address already in use)
10698 13:47:26 close(9)                 = 0
10698 13:47:26 close(9)                 = -1 EBADF (Bad file descriptor)
10698 13:47:26 sendto(3, "<163>May 14 13:47:26 dhcpd: Can'"..., 77, 
MSG_NOSIGNAL, NULL, 0) = 77
10698 13:47:26 write(6, "\nfailover peer \"xxxxxx\" stat"..., 131) = 131
10698 13:47:26 fsync(6)                 = 0
10698 13:47:26 sendto(3, "<166>May 14 13:47:26 dhcpd: fail"..., 83, 
MSG_NOSIGNAL, NULL, 0) = 83
10698 13:47:26 socket(PF_INET, SOCK_STREAM, IPPROTO_TCP) = 9
10698 13:47:26 bind(9, {sa_family=AF_INET, sin_port=htons(0), 
sin_addr=inet_addr("172.30.192.69")}, 16) = 0
10698 13:47:26 fcntl(9, F_SETFD, FD_CLOEXEC) = 0
10698 13:47:26 setsockopt(9, SOL_SOCKET, SO_REUSEADDR, [1], 4) = 0
10698 13:47:26 fcntl(9, F_SETFL, O_RDONLY|O_NONBLOCK) = 0
10698 13:47:26 connect(9, {sa_family=AF_INET, sin_port=htons(520), 
sin_addr=inet_addr("172.24.154.70")}, 16) = -1 EINPROGRESS (Operation now in 
progress)
10698 13:47:26 socket(PF_INET, SOCK_STREAM, IPPROTO_TCP) = 10
10698 13:47:26 fcntl(10, F_SETFD, FD_CLOEXEC) = 0
10698 13:47:26 setsockopt(10, SOL_SOCKET, SO_REUSEADDR, [1], 4) = 0
10698 13:47:26 bind(10, {sa_family=AF_INET, sin_port=htons(520), 
sin_addr=inet_addr("172.30.192.69")}, 16) = -1 EADDRINUSE (Address already in 
use)
10698 13:47:26 close(10)                = 0
10698 13:47:26 close(10)                = -1 EBADF (Bad file descriptor)
10698 13:47:26 clone(child_stack=0, 
flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, 
child_tidptr=0x7f1d2f72a9d0) = 10699
10698 13:47:26 exit_group(0)            = ?
10699 13:47:26 open("/var/run/dhcp-server/dhcpd.pid", O_RDONLY) = -1 ENOENT (No 
such file or directory)
10699 13:47:26 open("/var/run/dhcp-server/dhcpd.pid", O_WRONLY|O_CREAT|O_TRUNC, 
0644) = 10
10699 13:47:26 write(10, "10699\n", 6)  = 6

dhcpd has some checks for bind() failures, but they don't seem to be triggered
here (the bind() to port 67 succeeds because no listen() has been called,
because it uses recvfrom(); the preceeding ones are raw sockets, and dhcpd
doesn't seem to treat the other failures as fatal).

Now we have two dhcpds, and there is no locking around dhcpd.leases, so
they get to fight over writing data there, which causes loss of lease data.

Things get even more confusing if (as in this case), this is part of a
failover pair.  One of the dhcpds will have the TCP ports for inbound
connections from the peer (the other will indefinitely call add_timeout()
to reschedule a bind attempt).  Both will be trying to connect to the peer
and resolve conflicts, which will confuse the peer about the state.

Obviously, there are some serious problems upstream with lack of concurrency
protection in dhcpd (checking if the pid in the pidfile is alive is not
very reliable).

But I'm not sure why that "rm -f" was added, or what problem it solves,
and it certainly interacts badly with the limited checks that dhcpd does
to prevent multiple copies from running.  Hence this bug.

[Note: I'm filing this from a system that has nothing to do with dhcpd, and
I've marked the version in sid, but AFAIK, this 'rm -f' has been there a long
time.  Also not sure about severity -- there is data loss potential, but it's
lease data.  Eventually, in failover pairs, the state conflicts will result
in a non-serving pair.]

-- System Information:
Debian Release: wheezy/sid
  APT prefers precise-updates
  APT policy: (600, 'precise-updates'), (600, 'precise-security'), (600, 
'precise'), (400, 'precise-backports')
Architecture: amd64 (x86_64)

Kernel: Linux 3.5.0-26-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

--- End Message ---
--- Begin Message --- 
Source: isc-dhcp
Source-Version: 4.3.3-2

We believe that the bug you reported is fixed in the latest version of
isc-dhcp, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Michael Gilbert <[email protected]> (supplier of updated isc-dhcp package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 06 Sep 2015 04:21:05 +0000
Source: isc-dhcp
Binary: isc-dhcp-server isc-dhcp-dbg isc-dhcp-server-ldap isc-dhcp-common 
isc-dhcp-dev isc-dhcp-client isc-dhcp-client-udeb isc-dhcp-relay
Architecture: source
Version: 4.3.3-2
Distribution: unstable
Urgency: medium
Maintainer: Debian ISC DHCP maintainers <[email protected]>
Changed-By: Michael Gilbert <[email protected]>
Description:
 isc-dhcp-client - DHCP client for automatically obtaining an IP address
 isc-dhcp-client-udeb - ISC DHCP Client for debian-installer (udeb)
 isc-dhcp-common - common files used by all of the isc-dhcp packages
 isc-dhcp-dbg - ISC DHCP server for automatic IP address assignment (debuging 
sym
 isc-dhcp-dev - API for accessing and modifying the DHCP server and client state
 isc-dhcp-relay - ISC DHCP relay daemon
 isc-dhcp-server - ISC DHCP server for automatic IP address assignment
 isc-dhcp-server-ldap - DHCP server that uses LDAP as its backend
Closes: 570895 677918 704175 712503 792928 793490 794771 795227
Changes:
 isc-dhcp (4.3.3-2) unstable; urgency=medium
 .
   * Use default paths for lease files.
   * Move omshell into the server package.
   * Avoid unnecessary libirs dependencies.
   * Recommend rather than depend isc-dhcp-common.
   * Disable NSUPDATE (closes: #712503).
   * Update translation (closes: #677918).
   * Enable pid file logging (closes: #792928).
   * Fix variables in manpages (closes: #570895).
   * Use a symlink for the debug script (closes: #794771).
   * Enable -user, -group, and -chroot server options (closes: #793490).
   * Avoid launching the server when its already running (closes: #704175).
   * Fix error when max lease time is used on 64-bit systems (closes: #795227).
Checksums-Sha1:
 2a74794ae95cc10a05bd16bf2ef1eaf724530670 3224 isc-dhcp_4.3.3-2.dsc
 2984fe734fbe86765a04f943e2053f7f3c7e4e60 80204 isc-dhcp_4.3.3-2.debian.tar.xz
Checksums-Sha256:
 4fa8bd7fd0b872061786524e79ef0329c05934683284a192121ac594f7789619 3224 
isc-dhcp_4.3.3-2.dsc
 753f81dd887c13273869667164d04b2db8cf95c54ba8b857eba5622640e41971 80204 
isc-dhcp_4.3.3-2.debian.tar.xz
Files:
 76f9bea3fea310be54b6e5c3a4fd7506 3224 net important isc-dhcp_4.3.3-2.dsc
 75884fcf2f95073695f532f282f21a85 80204 net important 
isc-dhcp_4.3.3-2.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=
=qwxj
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to