apport crashed with FileNotFoundError in is_container_pid(): [Errno 2] No such file or directory: '/proc/11102/ns/pid'

I see the same thing on Ubuntu 16.04 / apport 2.20.1-0ubuntu2.14 - same apport command line (except a different PID number), same error number and everything.

Looks like 'is_same_ns' is blindly doing an os.readlink on a path that it assumes must exist (because it does no defensive check) but the path clearly is missing sometimes

There is an errors bucket for this:

https://errors.ubuntu.com/problem/b6b178fe6ed572189dbfe2627876ed9e9d59ace2

The updates for this fix will need to go through security since many people are getting the package from there.

artful fix

zesty fix

xenial fix

Note that these fixes are susceptible to a race condition; better would handle the exception from Python. Probably returning 'false' is the right option in that case. (Assuming that's the case that then does less processing.)

Thanks

To clarify, I think these patches may reduce the number of reports in the error tracker; but to eliminate the reports, the exception needs to be handled.

Thanks

This bug was fixed in the package apport - 2.20.8-0ubuntu4

---------------
apport (2.20.8-0ubuntu4) bionic; urgency=medium

  * data/apport: add a second os.path.exists check to ensure we do not
    receive a Traceback in is_container_id(). (LP: #1733366)

 -- Brian Murray <email address hidden> Wed, 13 Dec 2017 10:30:23 -0800

Status changed to 'Confirmed' because the bug affects multiple users.

Here's an improved artful debdiff taking into account Seth's comments.

Here's a zesty debdiff.

And the xenial one.

Thanks for the updated debdiffs! They look pretty good to me but I'm wondering if was intentional that True is returned when the "not os.path.exists()" checks are true but the exception handler returns False when os.readlink() throws an errno.ENOENT OSError exception? IIUC, both situations occur when the namespace files don't exist but one situation returns True and the other False.

Should both situations return True? If so, I can make those changes before sponsoring so there's no need to upload new debdiffs.

Ah, yes it should return True. Thanks for catching that! To be absolutely clear:

311 except OSError as e:
312 if e.errno == errno.ENOENT:
313 return True

This bug was fixed in the package apport - 2.20.4-0ubuntu4.10

---------------
apport (2.20.4-0ubuntu4.10) zesty-security; urgency=medium

  * REGRESSION UPDATE: Fix regression that caused a Traceback in the
    container support (LP: #1733366)
    - data/apport: add a second os.path.exists check to ensure we do not
      receive a Traceback in is_container_id() and add an exception handler in
      case either name space can not be found.

 -- Brian Murray <email address hidden> Wed, 13 Dec 2017 10:51:39 -0800

This bug was fixed in the package apport - 2.20.1-0ubuntu2.15

---------------
apport (2.20.1-0ubuntu2.15) xenial-security; urgency=medium

  * REGRESSION UPDATE: Fix regression that caused a Traceback in the
    container support (LP: #1733366)
    - data/apport: add a second os.path.exists check to ensure we do not
      receive a Traceback in is_container_id() and add an exception handler in
      case either name space can not be found.

 -- Brian Murray <email address hidden> Wed, 13 Dec 2017 10:54:26 -0800

This bug was fixed in the package apport - 2.20.7-0ubuntu3.7

---------------
apport (2.20.7-0ubuntu3.7) artful-security; urgency=medium

  * REGRESSION UPDATE: Fix regression that caused a Traceback in the
    container support (LP: #1733366)
    - data/apport: add a second os.path.exists check to ensure we do not
      receive a Traceback in is_container_id() and add an exception handler in
      case either name space can not be found.

 -- Brian Murray <email address hidden> Wed, 13 Dec 2017 10:49:58 -0800

This could use fixing for Trusty too.

https://errors.ubuntu.com/problem/385d2e8ecf335dc2cdd7216506bbf2b6e6b8751c

The function was slightly in Trusty but the attached debdiff should fix the crash seen in the Error Tracker.

Thanks, Brian, reviewing now.

I've uploaded the trusty apport package to the ubuntu-security-proposed ppa (https://launchpad.net/~ubuntu-security-proposed/+archive/ubuntu/ppa/) for testing, and will likely release this next week. Any feedback is appreciated.

Thanks!

This bug was fixed in the package apport - 2.14.1-0ubuntu3.28

---------------
apport (2.14.1-0ubuntu3.28) trusty-security; urgency=medium

  * REGRESSION UPDATE: Fix regression that caused a Traceback in the
    container support (LP: #1733366)
    - data/apport: add a second os.path.exists check to ensure we do not
      receive a Traceback in is_container_id() and add an exception handler in
      case either name space can not be found.

 -- Brian Murray <email address hidden> Fri, 20 Apr 2018 14:11:44 -0700