[jira] [Comment Edited] (DAEMON-363) JSVC Fails to launch (SIGBUS 0x7) on Centos 6.9 Kernel 2.6.32-696.3.2.el6.x86_64
[
https://issues.apache.org/jira/browse/DAEMON-363?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16069796#comment-16069796
]
Youssef OUMANZOU edited comment on DAEMON-363 at 6/30/17 10:02 AM:
---
Hi Derek,
Do you have an idea about the solution that the patch implements?
In fact, I dont' know how the problem could be resolved since the
CVE-2017-1000364 increases the stack guard gap size from one page to 1M, to
limit the security flaw. Will the kernel deal with the jsvc as an exception to
allow less than 1M memory allocation?
was (Author: youmanzou):
Hi Derek,
Do you have an idea about the solution that the patch implements?
In fact, I dont' know how the problem could be resolved since the
CVE-2017-1000364 increases the stack guard gap size from one page to 1 MiB, to
limit the security flaw. Will the kernel deal with the jsvc as an exception to
allow less than 1MIB memory allocation?
> JSVC Fails to launch (SIGBUS 0x7) on Centos 6.9 Kernel
> 2.6.32-696.3.2.el6.x86_64
>
>
> Key: DAEMON-363
> URL: https://issues.apache.org/jira/browse/DAEMON-363
> Project: Commons Daemon
> Issue Type: Bug
> Components: Jsvc
>Affects Versions: 1.0.15
> Environment: CentOS 6.9
> Kernel: 2.6.32-696.3.2.el6.x86_64
> Updated for CVE: CVE-2017-1000364
> JSVC compiled from latest source.
>Reporter: Derek Schenk
>Priority: Critical
> Attachments: hs_err_pid4035.log
>
>
> After applying the update for CVE-2017-1000364 to CentOS 6.9 (kernel
> 2.6.32-696.3.2.el6.x86_64) JSVC no longer launches the JVM.
> The process starts, and when it attempts to launch the JVM it fails with a
> SIGBUS (0x7).
> {code}
> #
> # A fatal error has been detected by the Java Runtime Environment:
> #
> # SIGBUS (0x7) at pc=0x7f4785109bfc, pid=21204, tid=0x7f4796bbd700
> #
> # JRE version: (8.0_121-b13) (build )
> # Java VM: Java HotSpot(TM) 64-Bit Server VM (25.121-b13 mixed mode
> linux-amd64 compressed oops)
> # Problematic frame:
> # j java.lang.Object.()V+0
> {code}
> The following reproduces the problem. Note that the target class is not
> relevant as it never reaches that point.
> ./jsvc -debug -verbose -home /opt/java/1.8.0_121/ com.does.not.Matter
> Tracing the code it reaches this point and then fails:
> {code}
> java.c
> bool java_init(arg_data *args, home_data *data)
> ret = (*symb) (&jvm, &env, &arg);
> {code}
> The following is the output:
> {code}
> # ./jsvc -debug -verbose -home /opt/java/1.8.0_121/ com.does.not.Matter
> +-- DUMPING PARSED COMMAND LINE ARGUMENTS --
> | Detach: True
> | Show Version:No
> | Show Help: No
> | Check Only: Disabled
> | Stop:False
> | Wait:0
> | Run as service: No
> | Install service: No
> | Remove service: No
> | JVM Name:"null"
> | Java Home: "/opt/java/1.8.0_121/"
> | PID File:"/var/run/jsvc.pid"
> | User Name: "null"
> | Extra Options: 1
> | "-verbose"
> | Class Invoked: "com.does.not.Matter"
> | Class Arguments: 0
> +---
> Attempting to locate Java Home in /opt/java/1.8.0_121/
> Attempting to locate VM configuration file
> /opt/java/1.8.0_121//jre/lib/jvm.cfg
> Attempting to locate VM configuration file /opt/java/1.8.0_121//lib/jvm.cfg
> Attempting to locate VM configuration file
> /opt/java/1.8.0_121//jre/lib/amd64/jvm.cfg
> Attempting to locate VM configuration file
> /opt/java/1.8.0_121//lib/amd64/jvm.cfg
> Found VM configuration file at /opt/java/1.8.0_121//lib/amd64/jvm.cfg
> Found VM server definition in configuration
> Checking library /opt/java/1.8.0_121//jre/lib/amd64/server/libjvm.so
> Checking library /opt/java/1.8.0_121//lib/amd64/server/libjvm.so
> Found VM client definition in configuration
> Checking library /opt/java/1.8.0_121//jre/lib/amd64/client/libjvm.so
> Checking library /opt/java/1.8.0_121//lib/amd64/client/libjvm.so
> Cannot locate library for VM client (skipping)
> Java Home located in /opt/java/1.8.0_121/
> +-- DUMPING JAVA HOME STRUCTURE
> | Java Home: "/opt/java/1.8.0_121/"
> | Java VM Config.: "/opt/java/1.8.0_121//lib/amd64/jvm.cfg"
> | Found JVMs: 1
> | JVM Name:"server"
> | "/opt/java/1.8.0_121//lib/amd64/server/libjvm.so"
> +---
> Using default JVM in /opt/java/1.8.0_121//lib/amd64/server/libjvm.so
> Invoking w/
> LD_LIBRARY_PATH=/opt/java/1.8.0_121//lib/amd64/server:/opt/java/1.8.0_121//lib/amd64
> +-- DUMPING PARSED COMMAND LINE ARGUMENTS --
> | Detach: True
> | Show Version:No
> | Show Help: No
> | Check Only: Disabled
> | Stop:F
[jira] [Comment Edited] (DAEMON-363) JSVC Fails to launch (SIGBUS 0x7) on Centos 6.9 Kernel 2.6.32-696.3.2.el6.x86_64
[
https://issues.apache.org/jira/browse/DAEMON-363?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16069809#comment-16069809
]
Sven Neuhaus edited comment on DAEMON-363 at 6/30/17 9:54 AM:
--
As far as Ubuntu 16.04 LTS is concerned, this kernel regression was apparently
addressed by [USN-3344-1|https://www.ubuntu.com/usn/usn-3344-1/].
Quote:
bq. "USN 3328-1 fixed a vulnerability in the Linux kernel. However, that fix
introduced regressions for some Java applications. This update addresses the
issue. We apologize for the inconvenience."
was (Author: neuhaus):
As far as Ubuntu 16.04 LTS is concerned, this kernel regression was apparently
addressed by [USN-3344-1|https://www.ubuntu.com/usn/usn-3344-1/].
Quote:
bq. "_USN 3328-1 fixed a vulnerability in the Linux kernel. However, that
bq. fix introduced regressions for some Java applications. This update
bq. addresses the issue. We apologize for the inconvenience._"
> JSVC Fails to launch (SIGBUS 0x7) on Centos 6.9 Kernel
> 2.6.32-696.3.2.el6.x86_64
>
>
> Key: DAEMON-363
> URL: https://issues.apache.org/jira/browse/DAEMON-363
> Project: Commons Daemon
> Issue Type: Bug
> Components: Jsvc
>Affects Versions: 1.0.15
> Environment: CentOS 6.9
> Kernel: 2.6.32-696.3.2.el6.x86_64
> Updated for CVE: CVE-2017-1000364
> JSVC compiled from latest source.
>Reporter: Derek Schenk
>Priority: Critical
> Attachments: hs_err_pid4035.log
>
>
> After applying the update for CVE-2017-1000364 to CentOS 6.9 (kernel
> 2.6.32-696.3.2.el6.x86_64) JSVC no longer launches the JVM.
> The process starts, and when it attempts to launch the JVM it fails with a
> SIGBUS (0x7).
> {code}
> #
> # A fatal error has been detected by the Java Runtime Environment:
> #
> # SIGBUS (0x7) at pc=0x7f4785109bfc, pid=21204, tid=0x7f4796bbd700
> #
> # JRE version: (8.0_121-b13) (build )
> # Java VM: Java HotSpot(TM) 64-Bit Server VM (25.121-b13 mixed mode
> linux-amd64 compressed oops)
> # Problematic frame:
> # j java.lang.Object.()V+0
> {code}
> The following reproduces the problem. Note that the target class is not
> relevant as it never reaches that point.
> ./jsvc -debug -verbose -home /opt/java/1.8.0_121/ com.does.not.Matter
> Tracing the code it reaches this point and then fails:
> {code}
> java.c
> bool java_init(arg_data *args, home_data *data)
> ret = (*symb) (&jvm, &env, &arg);
> {code}
> The following is the output:
> {code}
> # ./jsvc -debug -verbose -home /opt/java/1.8.0_121/ com.does.not.Matter
> +-- DUMPING PARSED COMMAND LINE ARGUMENTS --
> | Detach: True
> | Show Version:No
> | Show Help: No
> | Check Only: Disabled
> | Stop:False
> | Wait:0
> | Run as service: No
> | Install service: No
> | Remove service: No
> | JVM Name:"null"
> | Java Home: "/opt/java/1.8.0_121/"
> | PID File:"/var/run/jsvc.pid"
> | User Name: "null"
> | Extra Options: 1
> | "-verbose"
> | Class Invoked: "com.does.not.Matter"
> | Class Arguments: 0
> +---
> Attempting to locate Java Home in /opt/java/1.8.0_121/
> Attempting to locate VM configuration file
> /opt/java/1.8.0_121//jre/lib/jvm.cfg
> Attempting to locate VM configuration file /opt/java/1.8.0_121//lib/jvm.cfg
> Attempting to locate VM configuration file
> /opt/java/1.8.0_121//jre/lib/amd64/jvm.cfg
> Attempting to locate VM configuration file
> /opt/java/1.8.0_121//lib/amd64/jvm.cfg
> Found VM configuration file at /opt/java/1.8.0_121//lib/amd64/jvm.cfg
> Found VM server definition in configuration
> Checking library /opt/java/1.8.0_121//jre/lib/amd64/server/libjvm.so
> Checking library /opt/java/1.8.0_121//lib/amd64/server/libjvm.so
> Found VM client definition in configuration
> Checking library /opt/java/1.8.0_121//jre/lib/amd64/client/libjvm.so
> Checking library /opt/java/1.8.0_121//lib/amd64/client/libjvm.so
> Cannot locate library for VM client (skipping)
> Java Home located in /opt/java/1.8.0_121/
> +-- DUMPING JAVA HOME STRUCTURE
> | Java Home: "/opt/java/1.8.0_121/"
> | Java VM Config.: "/opt/java/1.8.0_121//lib/amd64/jvm.cfg"
> | Found JVMs: 1
> | JVM Name:"server"
> | "/opt/java/1.8.0_121//lib/amd64/server/libjvm.so"
> +---
> Using default JVM in /opt/java/1.8.0_121//lib/amd64/server/libjvm.so
> Invoking w/
> LD_LIBRARY_PATH=/opt/java/1.8.0_121//lib/amd64/server:/opt/java/1.8.0_121//lib/amd64
> +-- DUMPING PARSED COMMAND LINE ARGUMENTS --
> | Detach: True
> | Show Version:No
> | Show Help: No
> | Check Only: Disabled
> | Stop:
[jira] [Comment Edited] (DAEMON-363) JSVC Fails to launch (SIGBUS 0x7) on Centos 6.9 Kernel 2.6.32-696.3.2.el6.x86_64
[
https://issues.apache.org/jira/browse/DAEMON-363?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16069809#comment-16069809
]
Sven Neuhaus edited comment on DAEMON-363 at 6/30/17 9:53 AM:
--
As far as Ubuntu 16.04 LTS is concerned, this kernel regression was apparently
addressed by [USN-3344-1|https://www.ubuntu.com/usn/usn-3344-1/].
Quote:
bq. "_USN 3328-1 fixed a vulnerability in the Linux kernel. However, that
bq. fix introduced regressions for some Java applications. This update
bq. addresses the issue. We apologize for the inconvenience._"
was (Author: neuhaus):
As far as Ubuntu 16.04 LTS is concerned, this kernel regression was apparently
addressed by [USN-3344-1|https://www.ubuntu.com/usn/usn-3344-1/].
> JSVC Fails to launch (SIGBUS 0x7) on Centos 6.9 Kernel
> 2.6.32-696.3.2.el6.x86_64
>
>
> Key: DAEMON-363
> URL: https://issues.apache.org/jira/browse/DAEMON-363
> Project: Commons Daemon
> Issue Type: Bug
> Components: Jsvc
>Affects Versions: 1.0.15
> Environment: CentOS 6.9
> Kernel: 2.6.32-696.3.2.el6.x86_64
> Updated for CVE: CVE-2017-1000364
> JSVC compiled from latest source.
>Reporter: Derek Schenk
>Priority: Critical
> Attachments: hs_err_pid4035.log
>
>
> After applying the update for CVE-2017-1000364 to CentOS 6.9 (kernel
> 2.6.32-696.3.2.el6.x86_64) JSVC no longer launches the JVM.
> The process starts, and when it attempts to launch the JVM it fails with a
> SIGBUS (0x7).
> {code}
> #
> # A fatal error has been detected by the Java Runtime Environment:
> #
> # SIGBUS (0x7) at pc=0x7f4785109bfc, pid=21204, tid=0x7f4796bbd700
> #
> # JRE version: (8.0_121-b13) (build )
> # Java VM: Java HotSpot(TM) 64-Bit Server VM (25.121-b13 mixed mode
> linux-amd64 compressed oops)
> # Problematic frame:
> # j java.lang.Object.()V+0
> {code}
> The following reproduces the problem. Note that the target class is not
> relevant as it never reaches that point.
> ./jsvc -debug -verbose -home /opt/java/1.8.0_121/ com.does.not.Matter
> Tracing the code it reaches this point and then fails:
> {code}
> java.c
> bool java_init(arg_data *args, home_data *data)
> ret = (*symb) (&jvm, &env, &arg);
> {code}
> The following is the output:
> {code}
> # ./jsvc -debug -verbose -home /opt/java/1.8.0_121/ com.does.not.Matter
> +-- DUMPING PARSED COMMAND LINE ARGUMENTS --
> | Detach: True
> | Show Version:No
> | Show Help: No
> | Check Only: Disabled
> | Stop:False
> | Wait:0
> | Run as service: No
> | Install service: No
> | Remove service: No
> | JVM Name:"null"
> | Java Home: "/opt/java/1.8.0_121/"
> | PID File:"/var/run/jsvc.pid"
> | User Name: "null"
> | Extra Options: 1
> | "-verbose"
> | Class Invoked: "com.does.not.Matter"
> | Class Arguments: 0
> +---
> Attempting to locate Java Home in /opt/java/1.8.0_121/
> Attempting to locate VM configuration file
> /opt/java/1.8.0_121//jre/lib/jvm.cfg
> Attempting to locate VM configuration file /opt/java/1.8.0_121//lib/jvm.cfg
> Attempting to locate VM configuration file
> /opt/java/1.8.0_121//jre/lib/amd64/jvm.cfg
> Attempting to locate VM configuration file
> /opt/java/1.8.0_121//lib/amd64/jvm.cfg
> Found VM configuration file at /opt/java/1.8.0_121//lib/amd64/jvm.cfg
> Found VM server definition in configuration
> Checking library /opt/java/1.8.0_121//jre/lib/amd64/server/libjvm.so
> Checking library /opt/java/1.8.0_121//lib/amd64/server/libjvm.so
> Found VM client definition in configuration
> Checking library /opt/java/1.8.0_121//jre/lib/amd64/client/libjvm.so
> Checking library /opt/java/1.8.0_121//lib/amd64/client/libjvm.so
> Cannot locate library for VM client (skipping)
> Java Home located in /opt/java/1.8.0_121/
> +-- DUMPING JAVA HOME STRUCTURE
> | Java Home: "/opt/java/1.8.0_121/"
> | Java VM Config.: "/opt/java/1.8.0_121//lib/amd64/jvm.cfg"
> | Found JVMs: 1
> | JVM Name:"server"
> | "/opt/java/1.8.0_121//lib/amd64/server/libjvm.so"
> +---
> Using default JVM in /opt/java/1.8.0_121//lib/amd64/server/libjvm.so
> Invoking w/
> LD_LIBRARY_PATH=/opt/java/1.8.0_121//lib/amd64/server:/opt/java/1.8.0_121//lib/amd64
> +-- DUMPING PARSED COMMAND LINE ARGUMENTS --
> | Detach: True
> | Show Version:No
> | Show Help: No
> | Check Only: Disabled
> | Stop:False
> | Wait:0
> | Run as service: No
> | Install service: No
> | Remove service: No
> | JVM Name:"null"
> | Java Home: "/opt/java/1.8.0_121/"
> | PID File:"/var/
[jira] [Comment Edited] (DAEMON-363) JSVC Fails to launch (SIGBUS 0x7) on Centos 6.9 Kernel 2.6.32-696.3.2.el6.x86_64
[
https://issues.apache.org/jira/browse/DAEMON-363?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16069809#comment-16069809
]
Sven Neuhaus edited comment on DAEMON-363 at 6/30/17 9:52 AM:
--
As far as Ubuntu 16.04 LTS is concerned, this kernel regression was apparently
addressed by [USN-3344-1|https://www.ubuntu.com/usn/usn-3344-1/].
was (Author: neuhaus):
As far as Ubuntu is concerned, it appears that this kernel regression was
addressed by [USN-3344-1|https://www.ubuntu.com/usn/usn-3344-1/]
> JSVC Fails to launch (SIGBUS 0x7) on Centos 6.9 Kernel
> 2.6.32-696.3.2.el6.x86_64
>
>
> Key: DAEMON-363
> URL: https://issues.apache.org/jira/browse/DAEMON-363
> Project: Commons Daemon
> Issue Type: Bug
> Components: Jsvc
>Affects Versions: 1.0.15
> Environment: CentOS 6.9
> Kernel: 2.6.32-696.3.2.el6.x86_64
> Updated for CVE: CVE-2017-1000364
> JSVC compiled from latest source.
>Reporter: Derek Schenk
>Priority: Critical
> Attachments: hs_err_pid4035.log
>
>
> After applying the update for CVE-2017-1000364 to CentOS 6.9 (kernel
> 2.6.32-696.3.2.el6.x86_64) JSVC no longer launches the JVM.
> The process starts, and when it attempts to launch the JVM it fails with a
> SIGBUS (0x7).
> {code}
> #
> # A fatal error has been detected by the Java Runtime Environment:
> #
> # SIGBUS (0x7) at pc=0x7f4785109bfc, pid=21204, tid=0x7f4796bbd700
> #
> # JRE version: (8.0_121-b13) (build )
> # Java VM: Java HotSpot(TM) 64-Bit Server VM (25.121-b13 mixed mode
> linux-amd64 compressed oops)
> # Problematic frame:
> # j java.lang.Object.()V+0
> {code}
> The following reproduces the problem. Note that the target class is not
> relevant as it never reaches that point.
> ./jsvc -debug -verbose -home /opt/java/1.8.0_121/ com.does.not.Matter
> Tracing the code it reaches this point and then fails:
> {code}
> java.c
> bool java_init(arg_data *args, home_data *data)
> ret = (*symb) (&jvm, &env, &arg);
> {code}
> The following is the output:
> {code}
> # ./jsvc -debug -verbose -home /opt/java/1.8.0_121/ com.does.not.Matter
> +-- DUMPING PARSED COMMAND LINE ARGUMENTS --
> | Detach: True
> | Show Version:No
> | Show Help: No
> | Check Only: Disabled
> | Stop:False
> | Wait:0
> | Run as service: No
> | Install service: No
> | Remove service: No
> | JVM Name:"null"
> | Java Home: "/opt/java/1.8.0_121/"
> | PID File:"/var/run/jsvc.pid"
> | User Name: "null"
> | Extra Options: 1
> | "-verbose"
> | Class Invoked: "com.does.not.Matter"
> | Class Arguments: 0
> +---
> Attempting to locate Java Home in /opt/java/1.8.0_121/
> Attempting to locate VM configuration file
> /opt/java/1.8.0_121//jre/lib/jvm.cfg
> Attempting to locate VM configuration file /opt/java/1.8.0_121//lib/jvm.cfg
> Attempting to locate VM configuration file
> /opt/java/1.8.0_121//jre/lib/amd64/jvm.cfg
> Attempting to locate VM configuration file
> /opt/java/1.8.0_121//lib/amd64/jvm.cfg
> Found VM configuration file at /opt/java/1.8.0_121//lib/amd64/jvm.cfg
> Found VM server definition in configuration
> Checking library /opt/java/1.8.0_121//jre/lib/amd64/server/libjvm.so
> Checking library /opt/java/1.8.0_121//lib/amd64/server/libjvm.so
> Found VM client definition in configuration
> Checking library /opt/java/1.8.0_121//jre/lib/amd64/client/libjvm.so
> Checking library /opt/java/1.8.0_121//lib/amd64/client/libjvm.so
> Cannot locate library for VM client (skipping)
> Java Home located in /opt/java/1.8.0_121/
> +-- DUMPING JAVA HOME STRUCTURE
> | Java Home: "/opt/java/1.8.0_121/"
> | Java VM Config.: "/opt/java/1.8.0_121//lib/amd64/jvm.cfg"
> | Found JVMs: 1
> | JVM Name:"server"
> | "/opt/java/1.8.0_121//lib/amd64/server/libjvm.so"
> +---
> Using default JVM in /opt/java/1.8.0_121//lib/amd64/server/libjvm.so
> Invoking w/
> LD_LIBRARY_PATH=/opt/java/1.8.0_121//lib/amd64/server:/opt/java/1.8.0_121//lib/amd64
> +-- DUMPING PARSED COMMAND LINE ARGUMENTS --
> | Detach: True
> | Show Version:No
> | Show Help: No
> | Check Only: Disabled
> | Stop:False
> | Wait:0
> | Run as service: No
> | Install service: No
> | Remove service: No
> | JVM Name:"null"
> | Java Home: "/opt/java/1.8.0_121/"
> | PID File:"/var/run/jsvc.pid"
> | User Name: "null"
> | Extra Options: 1
> | "-verbose"
> | Class Invoked: "com.does.not.Matter"
> | Class Arguments: 0
> +---
> Attempting to
