Kernel panic - not syncing: attempted to kill init! (Pid: 1, comm: init Not tainted 2.6.32-504.3.3.el6.i686 #1)

Обсуждение настройки и работы сервисов, резервирования, сетевых настроек и вопросов безопасности ОС.

Модератор: SLEDopit

Ответить
Аватара пользователя
Disova
Сообщения: 59
ОС: Debian, CentOS

Kernel panic - not syncing: attempted to kill init!

Сообщение Disova »

CentOS release 6.6 (Final)
2.6.32-504.3.3.el6.i686


Началось все с руганья bind на права, хотя они в порядке.
Как оказалось при перезагрузке комп намертво виснет с ошибкой(см. скриншот), при ресете стартует нормально кроме того, что некоторые сервисы не стартуют, жалуются на права(bind, exim, etc.).
SElinux отключен.
2015_04_20_22_58_55_202.jpg


Spoiler
Как-то обнаружил что bind мертв.
# service named start
Starting named: [FAILED]
В логах ничего.
Spoiler

Код: Выделить всё

Apr 19 20:44:04 server named[11305]: starting BIND 9.8.2rc1-RedHat-9.8.2-0.30.rc1.el6_6.2 -u named
Apr 19 20:44:04 server named[11305]: built with '--build=i386-redhat-linux-gnu' '--host=i386-redhat-linux-gnu' '--target=i686-redhat-linux-gnu' '--program-prefix=' '--prefix=/usr' '--exec-prefix=/usr' '--bindir=/usr/bin' '--sbindir=/usr/sbin' '--sysconfdir=/etc' '--datadir=/usr/share' '--includedir=/usr/include' '--libdir=/usr/lib' '--libexecdir=/usr/libexec' '--sharedstatedir=/var/lib' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--with-libtool' '--localstatedir=/var' '--enable-threads' '--enable-ipv6' '--enable-filter-aaaa' '--with-pic' '--disable-static' '--disable-openssl-version-check' '--with-dlopen=yes' '--with-dlz-ldap=yes' '--with-dlz-postgres=yes' '--with-dlz-mysql=yes' '--with-dlz-filesystem=yes' '--with-gssapi=yes' '--disable-isc-spnego' '--with-docbook-xsl=/usr/share/sgml/docbook/xsl-stylesheets' '--enable-fixed-rrset' 'build_alias=i386-redhat-linux-gnu' 'host_alias=i386-redhat-linux-gnu' 'target_alias=i686-redhat-linux-gnu' 'CFLAGS= -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m32 -march=i686 -mtune=atom -fasynchronous-unwind-tables' 'CPPFLAGS= -DDIG_SIGCHASE'
Apr 19 20:44:04 server named[11305]: ----------------------------------------------------
Apr 19 20:44:04 server named[11305]: BIND 9 is maintained by Internet Systems Consortium,
Apr 19 20:44:04 server named[11305]: Inc. (ISC), a non-profit 501(c)(3) public-benefit
Apr 19 20:44:04 server named[11305]: corporation.  Support and training for BIND 9 are
Apr 19 20:44:04 server named[11305]: available at https://www.isc.org/support
Apr 19 20:44:04 server named[11305]: ----------------------------------------------------
Apr 19 20:44:04 server named[11305]: adjusted limit on open files from 4096 to 1048576
Apr 19 20:44:04 server named[11305]: found 1 CPU, using 1 worker thread
Apr 19 20:44:04 server named[11305]: using up to 4096 sockets

Пытаюсь запустить из консоли - ругается на права.
Spoiler

Код: Выделить всё

# named
Apr 19 20:50:46 server named[11461]: starting BIND 9.8.2rc1-RedHat-9.8.2-0.30.rc1.el6_6.2 -c /etc/named.conf
Apr 19 20:50:46 server named[11461]: built with '--build=i386-redhat-linux-gnu' '--host=i386-redhat-linux-gnu' '--target=i686-redhat-linux-gnu' '--program-prefix=' '--prefix=/usr' '--exec-prefix=/usr' '--bindir=/usr/bin' '--sbindir=/usr/sbin' '--sysconfdir=/etc' '--datadir=/usr/share' '--includedir=/usr/include' '--libdir=/usr/lib' '--libexecdir=/usr/libexec' '--sharedstatedir=/var/lib' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--with-libtool' '--localstatedir=/var' '--enable-threads' '--enable-ipv6' '--enable-filter-aaaa' '--with-pic' '--disable-static' '--disable-openssl-version-check' '--with-dlopen=yes' '--with-dlz-ldap=yes' '--with-dlz-postgres=yes' '--with-dlz-mysql=yes' '--with-dlz-filesystem=yes' '--with-gssapi=yes' '--disable-isc-spnego' '--with-docbook-xsl=/usr/share/sgml/docbook/xsl-stylesheets' '--enable-fixed-rrset' 'build_alias=i386-redhat-linux-gnu' 'host_alias=i386-redhat-linux-gnu' 'target_alias=i686-redhat-linux-gnu' 'CFLAGS= -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m32 -march=i686 -mtune=atom -fasynchronous-unwind-tables' 'CPPFLAGS= -DDIG_SIGCHASE'
Apr 19 20:50:46 server named[11461]: ----------------------------------------------------
Apr 19 20:50:46 server named[11461]: BIND 9 is maintained by Internet Systems Consortium,
Apr 19 20:50:46 server named[11461]: Inc. (ISC), a non-profit 501(c)(3) public-benefit
Apr 19 20:50:46 server named[11461]: corporation.  Support and training for BIND 9 are
Apr 19 20:50:46 server named[11461]: available at https://www.isc.org/support
Apr 19 20:50:46 server named[11461]: ----------------------------------------------------
Apr 19 20:50:46 server named[11461]: adjusted limit on open files from 4096 to 1048576
Apr 19 20:50:46 server named[11461]: found 1 CPU, using 1 worker thread
Apr 19 20:50:46 server named[11461]: using up to 4096 sockets
Apr 19 20:50:46 server named[11461]: loading configuration from '/etc/named.conf'
Apr 19 20:50:46 server named[11461]: reading built-in trusted keys from file '/etc/named.iscdlv.key'
Apr 19 20:50:46 server named[11461]: using default UDP/IPv4 port range: [1024, 65535]
Apr 19 20:50:46 server named[11461]: using default UDP/IPv6 port range: [1024, 65535]
Apr 19 20:50:46 server named[11461]: listening on IPv4 interface lo, 127.0.0.1#53
Apr 19 20:50:46 server named[11461]: listening on IPv4 interface eth1, 195.189.51.124#53
Apr 19 20:50:46 server named[11461]: listening on IPv4 interface eth2, 10.0.0.1#53
Apr 19 20:50:46 server named[11461]: listening on IPv4 interface wlan0, 10.0.0.129#53
Apr 19 20:50:46 server named[11461]: could not open file '/var/run/named/named.pid': Permission denied
Apr 19 20:50:46 server named[11461]: generating session key for dynamic DNS
Apr 19 20:50:46 server named[11461]: could not open file '/var/run/named/session.key': Permission denied
Apr 19 20:50:46 server named[11461]: could not create /var/run/named/session.key
Apr 19 20:50:46 server named[11461]: failed to generate session key for dynamic DNS: permission denied
Apr 19 20:50:46 server named[11461]: sizing zone task pool based on 10 zones
Apr 19 20:50:46 server named[11461]: using built-in DLV key for view _default
Apr 19 20:50:46 server named[11461]: set up managed keys zone for view _default, file '/var/named/dynamic/managed-keys.bind'
Apr 19 20:50:46 server named[11461]: Warning: 'empty-zones-enable/disable-empty-zone' not set: disabling RFC 1918 empty zones
Apr 19 20:50:46 server named[11461]: automatic empty zone: 127.IN-ADDR.ARPA
Apr 19 20:50:46 server named[11461]: automatic empty zone: 254.169.IN-ADDR.ARPA
Apr 19 20:50:46 server named[11461]: automatic empty zone: 2.0.192.IN-ADDR.ARPA
Apr 19 20:50:46 server named[11461]: automatic empty zone: 100.51.198.IN-ADDR.ARPA
Apr 19 20:50:46 server named[11461]: automatic empty zone: 113.0.203.IN-ADDR.ARPA
Apr 19 20:50:46 server named[11461]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
Apr 19 20:50:46 server named[11461]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Apr 19 20:50:46 server named[11461]: automatic empty zone: D.F.IP6.ARPA
Apr 19 20:50:46 server named[11461]: automatic empty zone: 8.E.F.IP6.ARPA
Apr 19 20:50:46 server named[11461]: automatic empty zone: 9.E.F.IP6.ARPA
Apr 19 20:50:46 server named[11461]: automatic empty zone: A.E.F.IP6.ARPA
Apr 19 20:50:46 server named[11461]: automatic empty zone: B.E.F.IP6.ARPA
Apr 19 20:50:46 server named[11461]: automatic empty zone: 8.B.D.0.1.0.0.2.IP6.ARPA
Apr 19 20:50:46 server named[11461]: command channel listening on 127.0.0.1#953
Apr 19 20:50:46 server named[11461]: couldn't add command channel ::1#953: address not available
Apr 19 20:50:46 server named[11461]: isc_file_isplainfile 'data/named.run' failed: permission denied
Apr 19 20:50:46 server named[11461]: configuring logging: permission denied
Apr 19 20:50:46 server named[11461]: loading configuration: permission denied
Apr 19 20:50:46 server named[11461]: exiting (due to fatal error)


Права вроде в порядке
# getenforce
Disabled

# ls -ld /var/run/named/
drwxr-xr-x 2 named named 4096 2015-03-10 17:52 /var/run/named/

# ls -l /etc/named*
-rw-r----- 1 root named 4765 2015-04-19 20:50 /etc/named.conf
-rw-r----- 1 root named 2389 2015-03-10 17:52 /etc/named.iscdlv.key
-rw-r----- 1 root named 931 2007-06-21 13:09 /etc/named.rfc1912.zones
-rw-r----- 1 root named 487 2010-07-19 16:28 /etc/named.root.key

/etc/named:
-rw-r-----. 1 root root 367 2015-01-03 23:57 db.10.0.0
-rw-r-----. 1 root root 261 2015-01-03 23:57 db.127.0.0
-rw-r-----. 1 root root 480 2015-03-10 12:21 db.ds.lan
-rw-r-----. 1 root root 284 2015-01-03 23:57 db.localhost

Прилагаю конфиг named.
Spoiler

Код: Выделить всё

acl lan { 127.0.0.0/8;  10.0.0.0/24; };

options {
    listen-on port 53 { 127.0.0.1; 10.0.0.1; };
#    listen-on-v6 port 53 { ::1; };
    directory     "/var/named";
    dump-file     "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
    dnssec-enable yes;
    dnssec-validation yes;
    dnssec-lookaside auto;

    # Path to ISC DLV key
    bindkeys-file "/etc/named.iscdlv.key";

    managed-keys-directory "/var/named/dynamic";

    auth-nxdomain no;           # conform to RFC1035
    allow-query        { any; };
    allow-query-cache { lan; };
    allow-recursion { lan; };
    listen-on        { any; };
    listen-on-v6    { none; };
    notify yes;
};

logging {
        channel default_debug {
                file "data/named.run";
                severity dynamic;
        };
};

zone "." IN {
    type hint;
    file "named.ca";
};

zone "ds.lan" {
    type master;
    file "/etc/named/db.ds.lan";
};

zone "0.0.10.in-addr.arpa" {
    type master;
    file "/etc/named/db.10.0.0";
};

include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";
ride it you way
Спасибо сказали:
BigBrother
Сообщения: 436
Статус: ¯\_(ツ)_/¯
ОС: linux based

Re: Kernel panic - not syncing: attempted to kill init!

Сообщение BigBrother »

Disova писал(а):
19.04.2015 21:13
# ls -ld /var/run/named/
drwxr-xr-x 2 named named 4096 2015-03-10 17:52 /var/run/named/

покажите

Код: Выделить всё

ls -lh /var/run/named
ls -lh /var/run/named/data
Спасибо сказали:
Аватара пользователя
Disova
Сообщения: 59
ОС: Debian, CentOS

Re: Kernel panic - not syncing: attempted to kill init!

Сообщение Disova »

BigBrother писал(а):
19.04.2015 23:17
Disova писал(а):
19.04.2015 21:13
# ls -ld /var/run/named/
drwxr-xr-x 2 named named 4096 2015-03-10 17:52 /var/run/named/

покажите

Код: Выделить всё

ls -lh /var/run/named
ls -lh /var/run/named/data


Код: Выделить всё

# ls -lh /var/run/named/
total 0

ride it you way
Спасибо сказали:
Аватара пользователя
ITPS
Сообщения: 12
ОС: Arch Linux \r (\l)

Re: Kernel panic - not syncing: attempted to kill init!

Сообщение ITPS »

Disova писал(а):
19.04.2015 21:13
CentOS release 6.6 (Final)
2.6.32-504.3.3.el6.i686
BIND 9.8.2rc1-RedHat-9.8.2-0.30.rc1.el6_6.2


Как-то обнаружил что bind мертв.


сделай:

Код: Выделить всё

touch /.autorelabel
reboot
Изображение
Спасибо сказали:
Аватара пользователя
Disova
Сообщения: 59
ОС: Debian, CentOS

Re: Kernel panic - not syncing: attempted to kill init!

Сообщение Disova »

ITPS писал(а):
20.04.2015 16:55
сделай:

Код: Выделить всё

touch /.autorelabel
reboot

При попытке перезагрузки виснет намертво. Только дергать ресет. Очень интересно...
Стартует почти нормально. Некоторые сервисы не работают, тоже жалуются на права. Например exim.
/.autorelabel пуст
Прилагаю скрин.
2015_04_20_22_58_55_202.jpg
ride it you way
Спасибо сказали:
Ответить