Opened 6 years ago

Closed 4 years ago

#588 closed defect (wontfix)

Backup of kcore in chroot environments, e. g. ntpd

Reported by: mopp Owned by: bruno
Priority: normal Milestone: 3.0.4
Component: mondo Version: 3.0.0
Severity: normal Keywords: kcore chroot
Cc: asleinius@…

Description (last modified by bruno)

Hello,

it is the same problem as in ticket #320 & #397. I use mondo-3.0.0. The problem occurs with SLES 11 and openSUSE 12.1, but this should apply to all SUSE distributions with an enabled ntpd server with chroot protection. So in the default configuration mondo tries to backup the giant 128TB kcore file. To fix this /var/lib/ntp/proc needs to be added to the exclude list at least on suse distributions with enabled ntpd (default) and NTPD_RUN_CHROOTED="yes" in /etc/sysconfig/ntp.

Change History (8)

comment:1 Changed 6 years ago by mopp

Sorry ntpd is not enabled by default, but if it is enabled then it runs in a chroot environment

comment:2 Changed 6 years ago by bruno

  • Description modified (diff)

In your context what gives a mount command please ? Normally proc filesystem tyoes should be excluded. But maybe it appears differently. Also please attach the mondoarchive.log file in any case.

As a workaround use -E to exclude the /var/lib/ntp/proc dir.

comment:3 Changed 6 years ago by bruno

  • Milestone changed from 3.0.1 to 3.0.2

comment:4 Changed 6 years ago by bruno

  • Resolution set to wontfix
  • Status changed from new to closed

Without log files, I cannot help further. Please reopen when you have that info ready.

comment:5 Changed 5 years ago by asleiniu

  • Cc asleinius@… added
  • Resolution wontfix deleted
  • Status changed from closed to reopened

Hello, I have exactly the same problem ,but more complicated and even not able to get workaround

We are backing up only system disk /dev/cciss/c0d0 (with -I) and as I understand -E then can be only /dev/cciss/c0d0, as exclusion /var/lib/ntp/proc/kcore is not taken in account.

I see in log that biggest file is this one.

output of mount:

/dev/mapper/vg00-rootlv on / type ext3 (rw,acl,user_xattr)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devtmpfs on /dev type devtmpfs (rw,mode=0755)
tmpfs on /dev/shm type tmpfs (rw,relatime,mode=1777,size=171g)
devpts on /dev/pts type devpts (rw,mode=0620,gid=5)
/dev/cciss/c0d0p1 on /boot type ext2 (rw,acl,user_xattr)
/dev/mapper/vg00-homelv on /home type ext3 (rw,acl,user_xattr)
/dev/mapper/vg00-optlv on /opt type ext3 (rw,acl,user_xattr)
/dev/mapper/vg00-tmplv on /tmp type ext3 (rw,acl,user_xattr)
/dev/mapper/vg00-usrlv on /usr type ext3 (rw,acl,user_xattr)
/dev/mapper/vg00-varlv on /var type ext3 (rw,acl,user_xattr)
/dev/mapper/vg00-bokslv on /opt/boksm type ext3 (rw,acl,user_xattr)
/dev/mapper/vg00-lv_se on /opt/APPQcime type ext3 (rw)
fusectl on /sys/fs/fuse/connections type fusectl (rw)
securityfs on /sys/kernel/security type securityfs (rw)
rpc_pipefs on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw)
none on /var/lib/ntp/proc type proc (ro,nosuid,nodev)

ls -l /var/lib/ntp/proc/kcore
-r-------- 1 root root 140737486266368 Jan 10 13:02 /var/lib/ntp/proc/kcore

log file I can send by e-mail.

I there some solution/workaround possible?

Thanks, Arturas

comment:6 Changed 5 years ago by bruno

You should not use -I in your case. This is generally reserved for test, and is completely discouraged in combination with -E (Cf man page).

PLease do exclude all the FS/dirs you don't want (including the proc bind mounted one) in order to have a workaround. I have customers with 40+ FS doing that without pb. Create a script to generate the list if you really think its has to be done.

comment:7 Changed 5 years ago by bruno

  • Milestone changed from 3.0.2 to 3.0.4

comment:8 Changed 4 years ago by bruno

  • Resolution set to wontfix
  • Status changed from reopened to closed

In this case it's -E /var/lib/ntp/proc that you need.

Note: See TracTickets for help on using tickets.