Bug#540373: libc6: malloc.c, segmentation fault now and then

To: Aurelien Jarno <aurelien@aurel32.net>, 540373@bugs.debian.org
Subject: Bug#540373: libc6: malloc.c, segmentation fault now and then
From: Bjarni Ingi Gislason <bjarniig@rhi.hi.is>
Date: Wed, 12 Aug 2009 17:14:48 +0000
Message-id: <[🔎] 20090812171447.GA13982@rhi.hi.is>
Reply-to: Bjarni Ingi Gislason <bjarniig@rhi.hi.is>, 540373@bugs.debian.org
In-reply-to: <[🔎] 20090809185805.GG30784@hall.aurel32.net>
References: <[🔎] 20090807150747.GA12809@rhi.hi.is> <[🔎] 20090809172227.GA19051@rhi.hi.is> <[🔎] 20090809185805.GG30784@hall.aurel32.net>

Hinn 9. ágúst 2009 lét Aurelien Jarno þetta frá sér fara:
> On Sun, Aug 09, 2009 at 05:22:27PM +0000, Bjarni Ingi Gislason wrote:
> >   Some more information about dump in ftp.
> > 
> > 1)  No dump if text is keyed in, instead of using the macro "$safn ...".
> >    (only tested once)
> 
> Is the problem always reproducible?
> 

No, but I found a solution, see next item.

...
> > dir std* "| more"
> > 200 PORT command successful.
> > 150 Opening ASCII mode data connection for /bin/ls.
> > *** glibc detected *** ftp: corrupted double-linked list: 0x09ceb050 ***
> 
> This sounds like a bug in the ftp package.
> 
  Thanks for the tip.  This bug has been reported for the ftp package.
Bug #508378 explains the situation.  One then only needs to add enough
spaces to the definition of the macro, in my case 2 spaces after the
first word, to get it working.

  I think I should report the segmentation fault from "ace-of-penguins"
to that package.

  There are still issues with "malloc.c" on my mind.

1) The libc6-dbg package should not be compiled with the -O option (see
"<value optimized out>" in a backtrace).  Use that library only for the
program to be tested (e.g.

env LD_LIBRARY_PATH=/usr/lib/debug <program(s) ...>.

  or add the name after ".../debug" if the variable exists.

  Put that in a file and source the file.  Repeating is thus simple.

  Such information could be in a README file (now absent) with some
references about debugging.

2) The segmentation fault is in the "unlink(nextchunk, bck, fwd)"
function, but it is a "#define".  Therefore no backtrace???

  Maybe a compile dependent version of "unlink" should be used if
debugging information is created (option -g).

3) Even an "malloc(512)" can cause a segmentation fault (example with
"mtrace()", line 314: malloc (TRACE_BUFFER_SIZE) ).

4) Errors (warnings) could be better phrased for the novices

Suggestion: Instead of

*** glibc detected *** ftp: corrupted double-linked list: 0x09ceb050 ***

use e.g.

*** glibc detected invalid data from ftp: ...

Generally state with a sentence (if known):

1) Who is reporting

2) What is done

3) Why is it done (cause of problem)

4) Who is the culprit

-- 
Bjarni I. Gislason

Reply to:

References:
- Bug#540373: libc6: malloc.c, segmentation fault now and then
  - From: Bjarni Ingi Gislason <bjarniig@rhi.hi.is>
- Bug#540373: libc6: malloc.c, segmentation fault now and then
  - From: Bjarni Ingi Gislason <bjarniig@rhi.hi.is>
- Bug#540373: libc6: malloc.c, segmentation fault now and then
  - From: Aurelien Jarno <aurelien@aurel32.net>

Prev by Date: If your Outgo goes down by 60%, is that the same as Income?
Next by Date: Bug#540775: Newer kernel
Previous by thread: Bug#540373: libc6: malloc.c, segmentation fault now and then
Next by thread: eglibc 2.9-23 MIGRATED to testing
Index(es):
- Date
- Thread