Issue #50659: AddressSanitizer: SEGV ldap/servers/slapd/back-ldbm/db-bdb/bdb_layer.c:1990 in bdb_pre_close - 389-ds-base

389-ds-base

#50659 AddressSanitizer: SEGV ldap/servers/slapd/back-ldbm/db-bdb/bdb_layer.c:1990 in bdb_pre_close

Closed: wontfix 4 years ago by lkrispen. Opened 4 years ago by vashirov.

dirsrvtests/tests/suites/basic/basic_test.py::test_basic_db2index causes a crash:

=================================================================
==ns-slapd==262983==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000018 (pc 0x7fc3891012ba bp 0x7ffc90f4bea0 sp 0x7ffc90f4be50 T0)
==ns-slapd==262983==The signal is caused by a READ memory access.
==ns-slapd==262983==Hint: address points to the zero page.
    #0 0x7fc3891012b9 in bdb_pre_close ldap/servers/slapd/back-ldbm/db-bdb/bdb_layer.c:1990
    #1 0x7fc3891019ea in bdb_close ldap/servers/slapd/back-ldbm/db-bdb/bdb_layer.c:2101
    #2 0x7fc3891271e8 in bdb_upgradedb ldap/servers/slapd/back-ldbm/db-bdb/bdb_ldif2db.c:2506
    #3 0x7fc3890cbc07 in ldbm_back_upgradedb ldap/servers/slapd/back-ldbm/ldif2ldbm.c:331
    #4 0x55f2fcb591d3 in slapd_exemode_upgradedb ldap/servers/slapd/main.c:2659
    #5 0x7fc38f3f2f42 in __libc_start_main (/lib64/libc.so.6+0x23f42)
    #6 0x55f2fcb5bd2d  (/usr/sbin/ns-slapd+0x31d2d)

AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV ldap/servers/slapd/back-ldbm/db-bdb/bdb_layer.c:1990 in bdb_pre_close
==ns-slapd==262983==ABORTING

Metadata Update from @mreynolds:
- Custom field origin adjusted to None
- Custom field reviewstatus adjusted to None
- Issue set to the milestone: 1.4.2

4 years ago

lkrispen commented 4 years ago

https://pagure.io/389-ds-base/pull-request/50671

Metadata Update from @lkrispen:
- Issue close_status updated to: fixed
- Issue status updated to: Closed (was: Open)

4 years ago

vashirov commented 4 years ago

suites/replication/cleanallruv_test.py::test_stress_clean hangs the server.
pstack at shutdown:

Thread 10 (Thread 0x7f1c8b66b700 (LWP 12332)):
#0  0x00007f1cb71ce47c in pthread_cond_wait@@GLIBC_2.3.2 () at /lib64/libpthread.so.0
#1  0x00007f1cb7827828 in PR_WaitCondVar () at /lib64/libnspr4.so
#2  0x00007f1cb9f1d0ad in slapi_wait_condvar () at /usr/lib64/dirsrv/libslapd.so.0
#3  0x00007f1caa623a4d in roles_cache_wait_on_change (arg=0x7f1c97e85080) at ldap/servers/plugins/roles/roles_cache.c:387
#4  0x00007f1cb782d568 in _pt_root () at /lib64/libnspr4.so
#5  0x00007f1cb71c82de in start_thread () at /lib64/libpthread.so.0
#6  0x00007f1cb695be53 in clone () at /lib64/libc.so.6
Thread 9 (Thread 0x7f1c99b87700 (LWP 12296)):
#0  0x00007f1cb71ce47c in pthread_cond_wait@@GLIBC_2.3.2 () at /lib64/libpthread.so.0
#1  0x00007f1cae9f1cdb in __db_hybrid_mutex_suspend () at /lib64/libdb-5.3.so
#2  0x00007f1cae9f1095 in __db_tas_mutex_lock () at /lib64/libdb-5.3.so
#3  0x00007f1caea9cee7 in __lock_get_internal () at /lib64/libdb-5.3.so
#4  0x00007f1caea9dbf4 in __lock_vec () at /lib64/libdb-5.3.so
#5  0x00007f1caeaf5ff6 in __fop_lock_handle () at /lib64/libdb-5.3.so
#6  0x00007f1caeaf7f28 in __fop_remove_setup () at /lib64/libdb-5.3.so
#7  0x00007f1caeadbfd1 in __db_rename_int () at /lib64/libdb-5.3.so
#8  0x00007f1caeadb360 in __db_remove_int () at /lib64/libdb-5.3.so
#9  0x00007f1caeadbbff in __env_dbremove_pp () at /lib64/libdb-5.3.so
#10 0x00007f1cab8c9ec5 in _cl5DBCloseFile (data=0x7f1ca88469d0) at ldap/servers/plugins/replication/cl5_api.c:5668
#11 0x00007f1cb9ee7b1f in object_release () at /usr/lib64/dirsrv/libslapd.so.0
#12 0x00007f1cab8cb53a in _cl5DBDeleteFile (file_obj=0x7f1ca88469c0) at ldap/servers/plugins/replication/cl5_api.c:5763
#13 0x00007f1cab8cb53a in cl5DeleteDBSync (replica=replica@entry=0x7f1ca7fcef00) at ldap/servers/plugins/replication/cl5_api.c:586
#14 0x00007f1cab8f5a9d in replica_config_delete (pb=<optimized out>, e=<optimized out>, entryAfter=<optimized out>, returncode=0x7f1c99b84de8, returntext=<optimized out>, arg=<optimized out>) at ldap/servers/plugins/replication/repl5_replica_config.c:766
#15 0x00007f1cb9eabe87 in dse_call_callback.isra () at /usr/lib64/dirsrv/libslapd.so.0
#16 0x00007f1cb9eaf853 in dse_delete () at /usr/lib64/dirsrv/libslapd.so.0
#17 0x00007f1cb9ea458c in op_shared_delete () at /usr/lib64/dirsrv/libslapd.so.0
#18 0x00007f1cb9ea48e6 in do_delete () at /usr/lib64/dirsrv/libslapd.so.0
#19 0x000055c1fcc9bcdb in connection_dispatch_operation (pb=0x7f1ca8861020, op=0x7f1cb2ff2800, conn=0x7f1ca84d8dc0) at ldap/servers/slapd/connection.c:626
#20 0x000055c1fcc9bcdb in connection_threadmain () at ldap/servers/slapd/connection.c:1765
#21 0x00007f1cb782d568 in _pt_root () at /lib64/libnspr4.so
#22 0x00007f1cb71c82de in start_thread () at /lib64/libpthread.so.0
#23 0x00007f1cb695be53 in clone () at /lib64/libc.so.6
Thread 8 (Thread 0x7f1ca0b95700 (LWP 12282)):
#0  0x00007f1cb71d18dd in __lll_lock_wait () at /lib64/libpthread.so.0
#1  0x00007f1cb71cac6d in pthread_mutex_lock () at /lib64/libpthread.so.0
#2  0x00007f1cb78274cd in PR_Lock () at /lib64/libnspr4.so
#3  0x00007f1cab8f61f4 in replica_config_search (pb=0x7f1caddc9720, e=0x7f1cade86b80, entryAfter=<optimized out>, returncode=<optimized out>, returntext=<optimized out>, arg=<optimized out>) at ldap/servers/plugins/replication/repl5_replica_config.c:856
#4  0x00007f1cb9eabe87 in dse_call_callback.isra () at /usr/lib64/dirsrv/libslapd.so.0
#5  0x00007f1cb9eadd18 in dse_search () at /usr/lib64/dirsrv/libslapd.so.0
#6  0x00007f1cb9eeab6b in op_shared_search () at /usr/lib64/dirsrv/libslapd.so.0
#7  0x00007f1cb9efcbfc in search_internal_callback_pb () at /usr/lib64/dirsrv/libslapd.so.0
#8  0x00007f1cb9efce42 in search_internal_pb () at /usr/lib64/dirsrv/libslapd.so.0
#9  0x00007f1cb9efd1d7 in slapi_search_internal_get_entry () at /usr/lib64/dirsrv/libslapd.so.0
#10 0x00007f1cabd6d9e0 in mep_pre_op (pb=0x7f1caddc9780, modop=4) at ldap/servers/plugins/mep/mep.c:2169
#11 0x00007f1cb9ef7d89 in plugin_call_func () at /usr/lib64/dirsrv/libslapd.so.0
#12 0x00007f1cb9ef7fd4 in plugin_call_plugins () at /usr/lib64/dirsrv/libslapd.so.0
#13 0x00007f1cb9eae7fd in dse_modify () at /usr/lib64/dirsrv/libslapd.so.0
#14 0x00007f1cb9ee37c0 in op_shared_modify () at /usr/lib64/dirsrv/libslapd.so.0
#15 0x00007f1cb9ee440b in modify_internal_pb () at /usr/lib64/dirsrv/libslapd.so.0
#16 0x00007f1cab8f4818 in replica_update_state (when=<optimized out>, arg=<optimized out>) at ldap/servers/plugins/replication/repl5_replica.c:2756
#17 0x00007f1cb9eba3cc in eq_loop () at /usr/lib64/dirsrv/libslapd.so.0
#18 0x00007f1cb782d568 in _pt_root () at /lib64/libnspr4.so
#19 0x00007f1cb71c82de in start_thread () at /lib64/libpthread.so.0
#20 0x00007f1cb695be53 in clone () at /lib64/libc.so.6
Thread 7 (Thread 0x7f1cba835700 (LWP 12279)):
#0  0x00007f1cb71ce7ca in pthread_cond_timedwait@@GLIBC_2.3.2 () at /lib64/libpthread.so.0
#1  0x00007f1cb7827303 in pt_TimedWait () at /lib64/libnspr4.so
#2  0x00007f1cb78277be in PR_WaitCondVar () at /lib64/libnspr4.so
#3  0x00007f1cab8cf5fc in _cl5TrimMain (param=<optimized out>) at ldap/servers/plugins/replication/cl5_api.c:3110
#4  0x00007f1cb782d568 in _pt_root () at /lib64/libnspr4.so
#5  0x00007f1cb71c82de in start_thread () at /lib64/libpthread.so.0
#6  0x00007f1cb695be53 in clone () at /lib64/libc.so.6
Thread 6 (Thread 0x7f1ca2398700 (LWP 12278)):
#0  0x00007f1cb71ce47c in pthread_cond_wait@@GLIBC_2.3.2 () at /lib64/libpthread.so.0
#1  0x00007f1cb7827828 in PR_WaitCondVar () at /lib64/libnspr4.so
#2  0x00007f1cb9f1d0ad in slapi_wait_condvar () at /usr/lib64/dirsrv/libslapd.so.0
#3  0x00007f1cacc655ae in cos_cache_wait_on_change (arg=<optimized out>) at ldap/servers/plugins/cos/cos_cache.c:404
#4  0x00007f1cb782d568 in _pt_root () at /lib64/libnspr4.so
#5  0x00007f1cb71c82de in start_thread () at /lib64/libpthread.so.0
#6  0x00007f1cb695be53 in clone () at /lib64/libc.so.6
Thread 5 (Thread 0x7f1ca2b99700 (LWP 12277)):
#0  0x00007f1cb69534bf in select () at /lib64/libc.so.6
#1  0x00007f1cb9f30ca4 in DS_Sleep () at /usr/lib64/dirsrv/libslapd.so.0
#2  0x00007f1cac1df208 in perfctrs_wait (milliseconds=<optimized out>, priv=<optimized out>, db_env=<optimized out>) at ldap/servers/slapd/back-ldbm/perfctrs.c:80
#3  0x00007f1cac1eb184 in perf_threadmain (param=0x7f1cb2e2b680) at ldap/servers/slapd/back-ldbm/db-bdb/bdb_layer.c:2866
#4  0x00007f1cb782d568 in _pt_root () at /lib64/libnspr4.so
#5  0x00007f1cb71c82de in start_thread () at /lib64/libpthread.so.0
#6  0x00007f1cb695be53 in clone () at /lib64/libc.so.6
Thread 4 (Thread 0x7f1ca339a700 (LWP 12276)):
#0  0x00007f1cb69534bf in select () at /lib64/libc.so.6
#1  0x00007f1cb9f30ca4 in DS_Sleep () at /usr/lib64/dirsrv/libslapd.so.0
#2  0x00007f1cac1eafff in trickle_threadmain (param=0x7f1cb2e2b680) at ldap/servers/slapd/back-ldbm/db-bdb/bdb_layer.c:3807
#3  0x00007f1cb782d568 in _pt_root () at /lib64/libnspr4.so
#4  0x00007f1cb71c82de in start_thread () at /lib64/libpthread.so.0
#5  0x00007f1cb695be53 in clone () at /lib64/libc.so.6
Thread 3 (Thread 0x7f1ca3b9b700 (LWP 12275)):
#0  0x00007f1cb69534bf in select () at /lib64/libc.so.6
#1  0x00007f1cb9f30ca4 in DS_Sleep () at /usr/lib64/dirsrv/libslapd.so.0
#2  0x00007f1cac1edc14 in checkpoint_threadmain (param=0x7f1cb2e2b680) at ldap/servers/slapd/back-ldbm/db-bdb/bdb_layer.c:3591
#3  0x00007f1cb782d568 in _pt_root () at /lib64/libnspr4.so
#4  0x00007f1cb71c82de in start_thread () at /lib64/libpthread.so.0
#5  0x00007f1cb695be53 in clone () at /lib64/libc.so.6
Thread 2 (Thread 0x7f1ca439c700 (LWP 12274)):
#0  0x00007f1cb69534bf in select () at /lib64/libc.so.6
#1  0x00007f1cb9f30ca4 in DS_Sleep () at /usr/lib64/dirsrv/libslapd.so.0
#2  0x00007f1cac1eab68 in deadlock_threadmain (param=0x7f1cb2e2b680) at ldap/servers/slapd/back-ldbm/db-bdb/bdb_layer.c:3368
#3  0x00007f1cb782d568 in _pt_root () at /lib64/libnspr4.so
#4  0x00007f1cb71c82de in start_thread () at /lib64/libpthread.so.0
#5  0x00007f1cb695be53 in clone () at /lib64/libc.so.6
Thread 1 (Thread 0x7f1cba83a1c0 (LWP 12272)):
#0  0x00007f1cb69534bf in select () at /lib64/libc.so.6
#1  0x00007f1cb9f30ca4 in DS_Sleep () at /usr/lib64/dirsrv/libslapd.so.0
#2  0x000055c1fcc9fc06 in slapd_daemon (ports=0x7ffd949c4080) at ldap/servers/slapd/daemon.c:1101
#3  0x000055c1fcc933fd in main (argc=5, argv=0x7ffd949c4498) at ldap/servers/slapd/main.c:1066

Metadata Update from @vashirov:
- Issue status updated to: Open (was: Closed)

4 years ago

Metadata Update from @vashirov:
- Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1773114

4 years ago

lkrispen commented 4 years ago

This hang is fixed with #50745

Edited 4 years ago by lkrispen

Metadata Update from @lkrispen:
- Issue close_status updated to: fixed
- Issue status updated to: Closed (was: Open)

4 years ago

spichugi commented 3 years ago

389-ds-base is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in 389-ds-base's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/389ds/389-ds-base/issues/3714

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata Update from @spichugi:
- Issue close_status updated to: wontfix (was: fixed)

3 years ago

Metadata

Assignee

None

Tags

None

Blocking

None

Depending on

None

Priority

None

Milestone

1.4.2

reviewstatus

None

rhbz

https://bugzilla.redhat.com/show_bug.cgi?id=1773114

origin

None

389-ds-base

Source Code

#50659 AddressSanitizer: SEGV ldap/servers/slapd/back-ldbm/db-bdb/bdb_layer.c:1990 in bdb_pre_close Closed: wontfix 4 years ago by lkrispen. Opened 4 years ago by vashirov.

Metadata

#50659 AddressSanitizer: SEGV ldap/servers/slapd/back-ldbm/db-bdb/bdb_layer.c:1990 in bdb_pre_close

Closed: wontfix 4 years ago by lkrispen. Opened 4 years ago by vashirov.