[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#512410: openssh-server: sshd segfaults (suppose libc or libpam-mount related)

"Livingston, John A" <john.a.livingston@boeing.com> writes:

> I couldn't (easily) convince sshd to create a core dump, so I just
> started it with gdb attached and then tried a password
> connect. Backtrace is below. Let me know if you want to me to dump out
> anything in particular from any of the frames.

> Program received signal SIGSEGV, Segmentation fault.
> _int_free (av=0x7ffff6653e60, p=0x55544952454d5845) at malloc.c:4892
> 4892    malloc.c: No such file or directory.
> (gdb) where
> #0  _int_free (av=0x7ffff6653e60, p=0x55544952454d5845) at malloc.c:4892
> #1  0x00007ffff634b87c in *__GI___libc_free (mem=<optimized out>)
>     at malloc.c:3738
> #2  0x00007ffff68d182b in default_an_to_ln (
>     context=context@entry=0x5555557fb040, aname=aname@entry=0x5555557fb650,
>     lnsize=lnsize@entry=65, lname=lname@entry=0x7fffffffd760 "")
>     at ../../../../src/lib/krb5/os/an_to_ln.c:632

Ugh.  So it's segfaulting on a routine free().  That means memory
corruption somewhere.

Can you try running sshd -d under valgrind and see if it can spot where
the memory corruption is happening?

Russ Allbery (rra@debian.org)               <http://www.eyrie.org/~eagle/>

Reply to: