Ubuntu 16.04: Zope instance terminated by SIGSEGV (core dumped)

do3cc · May 9, 2016, 7:53am

Why are you so insultive? He is right about the unintended consequences.
Every program on your system that was expecting Python 2.7.11+ is now running Python 2.7.9. This may have security relevant consequences.

do3cc · May 9, 2016, 8:15am

I now managed to get it crashing too.
I tried some tricks to get a coredump, without luck. I then ran strace -f to see what happens before the crash:

19962 gettimeofday({1462779387, 327340}, NULL) = 0
19962 gettimeofday({1462779387, 327428}, NULL) = 0
19962 gettimeofday({1462779387, 327587}, NULL) = 0
19962 gettimeofday({1462779387, 328128}, NULL) = 0
19962 gettimeofday({1462779387, 328224}, NULL) = 0
19962 stat("/home/zope/bla2/eggs/plone.app.layout-2.5.19-py2.7.egg/plone/app/layout/viewlets/sections.pt", {st_mode=S_IFREG|0644, st_size=1735, ...}) = 0
19962 stat("/home/zope/bla2/eggs/plone.app.layout-2.5.19-py2.7.egg/plone/app/layout/viewlets/globalstatusmessage.pt", {st_mode=S_IFREG|0644, st_size=480, ...}) = 0
19962 stat("/home/zope/bla2/eggs/plone.app.layout-2.5.19-py2.7.egg/plone/app/layout/viewlets/path_bar.pt", {st_mode=S_IFREG|0644, st_size=1181, ...}) = 0
19962 stat("/home/zope/bla2/eggs/plone.locking-2.1.1-py2.7.egg/plone/locking/browser/info.pt", {st_mode=S_IFREG|0644, st_size=1838, ...}) = 0
19962 stat("/home/zope/bla2/eggs/plone.app.layout-2.5.19-py2.7.egg/plone/app/layout/viewlets/social_tags_body.pt", {st_mode=S_IFREG|0644, st_size=252, ...}) = 0
19962 stat("/home/zope/bla2/eggs/plone.app.layout-2.5.19-py2.7.egg/plone/app/layout/viewlets/toc.pt", {st_mode=S_IFREG|0644, st_size=336, ...}) = 0
19962 gettimeofday({1462779387, 360070}, NULL) = 0
19962 --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x80} ---
19961 +++ killed by SIGSEGV +++
19962 +++ killed by SIGSEGV +++
19955 +++ killed by SIGSEGV +++
19952 <... wait4 resumed> [{WIFSIGNALED(s) && WTERMSIG(s) == SIGSEGV}], 0, NULL) = 19955
19952 --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=19955, si_uid=1001, si_status=SIGSEGV, si_utime=1880, si_stime=622} ---
19952 rt_sigaction(SIGINT, {SIG_DFL, [], SA_RESTORER, 0x7fbbf38643d0}, {0x53c2a0, [], SA_RESTORER, 0x7fbbf38643d0}, 8) = 0
19952 close(12)                         = 0
19952 exit_group(-11)                   = ?
19952 +++ exited with 245 +++

This is always the same ending, toc.pt is always the last file getting stated. Unfortunately, the execption is quite generic. I won't start relearning gdb here, because I don't actually use Ubuntu myself at the moment.

rodfersou · May 10, 2016, 6:34am

nice trick @do3cc

rodfersou · May 10, 2016, 6:40am

the toc.pt file is too simple https://github.com/plone/plone.app.layout/blob/master/plone%2Fapp%2Flayout%2Fviewlets%2Ftoc.pt it just check if the viewlet is enabled and try to translate one word. not sure if the problem is there.

rodfersou · May 10, 2016, 6:46am

a breakpoint here can show if the problem is into toc.pt file..

do3cc · May 10, 2016, 7:30am

There is now a bug open on Zope2:

I guess it makes sense to continue the discussion there.

tkimnguyen · May 27, 2016, 2:23pm

Will one of you file an issue with our unified installer so it can handle this case? https://github.com/plone/Installers-UnifiedInstaller

svx · May 27, 2016, 2:49pm

@tkimnguyen what you mean ?

The UI-Installer comes with its own python, and as mentioned in the thread already, if you tell the UI-Installer to build python everything works.

So what do you mean with filling an Issue with our UI-Installer ?

tkimnguyen · May 27, 2016, 5:13pm

That's a small problem though because you have to know to ask it to build Python. By default it won't (it will use system Python).

svx · May 27, 2016, 6:03pm

@tkimnguyen OK that is true, but this still not explains why you ask to open an issue on the UI-Installer ?

This is a problem with the python-packages and according to the python.org bug tracker with certain python versions, this is not a problem with the UI-Installer.

tkimnguyen · June 1, 2016, 2:14pm

I'm not sure if you're explicitly making a distinction between the UI-installer and the normal unified installer. It doesn't matter which installer is enhanced to detect the situation (of being on Ubuntu 16.xxx and needing to build Python instead of using the system Python)...

svx · June 1, 2016, 2:46pm

@tkimnguyen No I don't

Hm well, I would be -1 on that, I do not want to set something like that to automatically, further will that be hopefully fixed soon at the source of the issue.

My point is that usually people know what they are doing if the choose 'build python' if we set that to default for Ubuntu 16.xx this is evil, yes its nice that they have a working plone site, but its IMHO bad in terms of security and other stuff.

If that would be the case on my machines with some software, compiling python without my permission I for sure would never use that software again

Maybe we could add somewhere a huge info/warning message about this ?

tkimnguyen · June 1, 2016, 2:57pm

A warning would be good!

jensens · July 6, 2016, 12:25pm

Since this is still not in Ubuntu 16.04 xenial but in the proposed updates, you can enable it like this:

add a line like so to /etc/apt/sources.list:

# proposed
# https://wiki.ubuntu.com/Testing/EnableProposed
deb http://at.archive.ubuntu.com/ubuntu/ xenial-proposed main restricted

then add a file /etc/apt/preferences.d/proposed-updates with:

Package: *
Pin: release a=xenial-proposed
Pin-Priority: 99

Package: *python2.7*
Pin: release a=xenial-proposed
Pin-Priority: 1000

and afterwards do an apt-get update and apt-get upgrade (dry run: apt-get upgrade -s).