Bug#512410: openssh-server: sshd segfaults (suppose libc or libpam-mount related)

To: Russ Allbery <rra@debian.org>
Cc: "512410@bugs.debian.org" <512410@bugs.debian.org>, "Robertson, Matthew L" <Matthew.L.Robertson@boeing.com>
Subject: Bug#512410: openssh-server: sshd segfaults (suppose libc or libpam-mount related)
From: "Livingston, John A" <john.a.livingston@boeing.com>
Date: Wed, 6 Jun 2012 15:40:47 -0500
Message-id: <6A1F4476-0A87-41EF-888D-4FA4BA43AE54@boeing.com>
Reply-to: "Livingston, John A" <john.a.livingston@boeing.com>, 512410@bugs.debian.org
In-reply-to: <87ehpstear.fsf@windlord.stanford.edu>
References: <20120604215444.28606.41987.reportbug@khorium.exmeritus.com> <871uluybhr.fsf@windlord.stanford.edu> <44A1F1CF-AA98-40C6-8264-2658B5F4537C@boeing.com> <87ehpstear.fsf@windlord.stanford.edu>

Russ,

On Jun 6, 2012, at 3:45 PM, Russ Allbery wrote:

> 
> Usually, segfaults in sshd are actually in a PAM module, but they can be
> rather hard to track down.  Could you try running sshd on a separate port
> with the -d flag so that you can get a trace on the server of where the
> segfault happens?  You may be able to capture a core dump that way so that
> you can get a backtrace and see where it's exploding.
> 

I couldn't (easily) convince sshd to create a core dump, so I just started it with gdb attached and then tried a password connect. Backtrace is below. Let me know if you want to me to dump out anything in particular from any of the frames.

Program received signal SIGSEGV, Segmentation fault.
_int_free (av=0x7ffff6653e60, p=0x55544952454d5845) at malloc.c:4892
4892    malloc.c: No such file or directory.
(gdb) where
#0  _int_free (av=0x7ffff6653e60, p=0x55544952454d5845) at malloc.c:4892
#1  0x00007ffff634b87c in *__GI___libc_free (mem=<optimized out>)
    at malloc.c:3738
#2  0x00007ffff68d182b in default_an_to_ln (
    context=context@entry=0x5555557fb040, aname=aname@entry=0x5555557fb650,
    lnsize=lnsize@entry=65, lname=lname@entry=0x7fffffffd760 "")
    at ../../../../src/lib/krb5/os/an_to_ln.c:632
#3  0x00007ffff68d2216 in krb5_aname_to_localname (
    context=context@entry=0x5555557fb040, aname=aname@entry=0x5555557fb650,
    lnsize_in=lnsize_in@entry=65, lname=lname@entry=0x7fffffffd760 "")
    at ../../../../src/lib/krb5/os/an_to_ln.c:793
#4  0x00007ffff68d55eb in an2ln_ok (luser=0x5555557ed200 "jlivings", 
    principal=0x5555557fb650, context=0x5555557fb040)
    at ../../../../src/lib/krb5/os/kuserok.c:168
#5  krb5_kuserok (context=0x5555557fb040, principal=0x5555557fb650, 
    luser=0x5555557ed200 "jlivings")
    at ../../../../src/lib/krb5/os/kuserok.c:181
#6  0x000055555557fd03 in ?? ()
#7  0x00005555555663bb in ?? ()
#8  0x000055555557990f in ?? ()
#9  0x000055555557b46e in ?? ()
#10 0x000055555557bfbf in ?? ()
#11 0x00005555555640d4 in main ()

Thanks,
John

Reply to:

Follow-Ups:
- Bug#512410: openssh-server: sshd segfaults (suppose libc or libpam-mount related)
  - From: Russ Allbery <rra@debian.org>

References:
- Bug#512410: openssh-server: sshd segfaults (suppose libc or libpam-mount related)
  - From: John Livingston <John.A.Livingston@boeing.com>
- Bug#512410: openssh-server: sshd segfaults (suppose libc or libpam-mount related)
  - From: Russ Allbery <rra@debian.org>
- Bug#512410: openssh-server: sshd segfaults (suppose libc or libpam-mount related)
  - From: "Livingston, John A" <john.a.livingston@boeing.com>
- Bug#512410: openssh-server: sshd segfaults (suppose libc or libpam-mount related)
  - From: Russ Allbery <rra@debian.org>

Prev by Date: Bug#512410: openssh-server: sshd segfaults (suppose libc or libpam-mount related)
Next by Date: Bug#512410: openssh-server: sshd segfaults (suppose libc or libpam-mount related)
Previous by thread: Bug#512410: openssh-server: sshd segfaults (suppose libc or libpam-mount related)
Next by thread: Bug#512410: openssh-server: sshd segfaults (suppose libc or libpam-mount related)
Index(es):
- Date
- Thread