Bug#616667: X server crash due to "xauth generate" with large timeout

To: submit@bugs.debian.org
Subject: Bug#616667: X server crash due to "xauth generate" with large timeout
From: Ian Jackson <ijackson@chiark.greenend.org.uk>
Date: Sun, 6 Mar 2011 12:32:21 +0000
Message-id: <[🔎] 19827.32469.15052.746816@chiark.greenend.org.uk>
Reply-to: Ian Jackson <ijackson@chiark.greenend.org.uk>, 616667@bugs.debian.org

Package: xserver-xorg
Version: 1:7.5+8

To reproduce:
 cp .Xauthority private/tmpfile
 xauth -f private/tmpfile generate $DISPLAY . untrusted timeout 1000000000

Actual behaviour:
My X server died.  The log message was:
 X: ../../Xext/security.c:323: SecurityAuthorizationExpired: Assertion `pAuth->timer == timer' failed.
 XIO:  fatal IO error 11 (Resource temporarily unavailable) on X server ":0.0"
       after 7385 requests (7224 known processed) with 0 events remaining.

Desired behaviour:
X auth cookie is replaced in private/tmpfile and X server does not
crash.  Alternatively, an error message (eg, that the timeout is too
large, or that the X request failed).

I was trying to make an untrusted cookie which would not time out.
Unfortunately that does not appear to be possible.  A timeout value of
1000000 seems to work; 10000000 crashes the server.

Ian.

Reply to:

Follow-Ups:
- Bug#616667: X server crash due to "xauth generate" with large timeout
  - From: Cyril Brulebois <kibi@debian.org>

Prev by Date: Bug#616485: libgl1-mesa-dri/radeon: [amd64] iceweasel segfault from flashplugin-nonfree inside libgl-mesa-*
Next by Date: Bug#616667: X server crash due to "xauth generate" with large timeout
Previous by thread: Bug#62489: marked as done (xterm: "secure keyboard" ignores AltGr modifier)
Next by thread: Bug#616667: X server crash due to "xauth generate" with large timeout
Index(es):
- Date
- Thread