#2749 Fix crash in nss responder
Closed: Fixed None Opened 3 years ago by lslebodn.

Crash is part of test cases for https://fedorahosted.org/sssd/wiki/DesignDocs/RestrictDomainsInPAM.

Backtrace:
[New LWP 20672]
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib64/libthread_db.so.1".
Core was generated by `/usr/libexec/sssd/sssd_nss --uid 0 --gid 0 --debug-to-files'.
Program terminated with signal 6, Aborted.
#0  0x00007fed9e7b25d7 in raise () from /lib64/libc.so.6

Thread 1 (Thread 0x7feda2e96840 (LWP 20672)):
#0  0x00007fed9e7b25d7 in raise () from /lib64/libc.so.6
No symbol table info available.
#1  0x00007fed9e7b3cc8 in abort () from /lib64/libc.so.6
No symbol table info available.
#2  0x00007feda2201f45 in _dbus_abort () from /lib64/libdbus-1.so.3
No symbol table info available.
#3  0x00007feda21f87ce in _dbus_warn_check_failed () from /lib64/libdbus-1.so.3
No symbol table info available.
#4  0x00007feda21eab86 in dbus_message_iter_append_basic () from /lib64/libdbus-1.so.3
No symbol table info available.
#5  0x00007feda21eb4a3 in dbus_message_append_args_valist () from /lib64/libdbus-1.so.3
No symbol table info available.
#6  0x00007feda21eb809 in dbus_message_append_args () from /lib64/libdbus-1.so.3
No symbol table info available.
#7  0x00007feda2f04e17 in sss_dp_get_account_msg (pvt=<optimized out>) at src/responder/common/responder_dp.c:626
        msg = 0x7feda34ad9f0
        dbret = <optimized out>
        info = 0x7feda34c0f90
        be_type = 4099
        attrs = 1
        filter = 0x7feda34b3c50 "name=\336\336\336\336\336\336\336\336q"
        __FUNCTION__ = "sss_dp_get_account_msg"
#8  0x00007feda2f05506 in sss_dp_issue_request (mem_ctx=0x7feda34c0f20, rctx=rctx@entry=0x7feda34a3b70, strkey=strkey@entry=0x7feda34a5640 "3:\336\336\336\336\336\336\336\336q@KRB", dom=dom@entry=0x7feda34a5920, msg_create=msg_create@entry=0x7feda2f04cd0 <sss_dp_get_account_msg>, pvt=0x7feda34c0f90, nreq=nreq@entry=0x7feda34c0d90) at src/responder/common/responder_dp.c:303
        hret = <optimized out>
        value = {type = 2669018022, {ptr = 0x10, i = 16, ui = 16, l = 16, ul = 16, f = 2.24207754e-44, d = 7.9050503334599447e-323}}
        key = 0x7feda34bc130
        sdp_req = <optimized out>
        cb = <optimized out>
        te = <optimized out>
        tv = <optimized out>
        msg = <optimized out>
        tmp_ctx = 0x7feda34a7af0
        ret = <optimized out>
        __FUNCTION__ = "sss_dp_issue_request"
#9  0x00007feda2f05b60 in sss_dp_get_account_send (mem_ctx=mem_ctx@entry=0x7feda34ac7a0, rctx=0x7feda34a3b70, dom=0x7feda34a5920, fast_reply=fast_reply@entry=true, type=type@entry=SSS_DP_INITGROUPS, opt_name=opt_name@entry=0x7feda34a5f00 "\336\336\336\336\336\336\336\336q", opt_id=0, extra=extra@entry=0x0) at src/responder/common/responder_dp.c:499
        ret = <optimized out>
        req = 0x7feda34c0d90
        info = 0x7feda34c0f90
        state = 0x7feda34c0f20
        key = 0x7feda34a5640 "3:\336\336\336\336\336\336\336\336q@KRB"
        __FUNCTION__ = "sss_dp_get_account_send"
#10 0x00007feda2ef219b in check_cache (dctx=dctx@entry=0x7feda34a2cb0, nctx=nctx@entry=0x7feda34b3d00, res=0x7feda34b6c40, req_type=req_type@entry=SSS_DP_INITGROUPS, opt_name=opt_name@entry=0x7feda34a5f00 "\336\336\336\336\336\336\336\336q", opt_id=opt_id@entry=0, extra=0x0, callback=callback@entry=0x7feda2ef65f0 <nss_cmd_getby_dp_callback>, pvt=pvt@entry=0x7feda34a2cb0) at src/responder/nss/nsssrv_cmd.c:705
        ret = <optimized out>
        cmdctx = 0x7feda34b12d0
        cctx = 0x7feda34ac7a0
        req = 0x0
        cb_ctx = 0x0
        cacheExpire = <optimized out>
        __FUNCTION__ = "check_cache"
#11 0x00007feda2ef4b77 in nss_cmd_initgroups_search (dctx=dctx@entry=0x7feda34a2cb0) at src/responder/nss/nsssrv_cmd.c:4314
        cmdctx = <optimized out>
        dom = 0x7feda34a5920
        cctx = <optimized out>
        name = 0x7feda34a5f00 "\336\336\336\336\336\336\336\336q"
        nctx = 0x7feda34b3d00
        ret = <optimized out>
        user_attrs = {0x7feda2f0c0c4 "name", 0x7feda2f0c175 "uidNumber", 0x7feda2f0c189 "gidNumber", 0x7feda2f0c1b5 "gecos", 0x7feda2f0c19d "homeDirectory", 0x7feda2f0c1c5 "loginShell", 0x7feda2f0c449 "lastUpdate", 0x7feda2f0c255 "dataExpireTimestamp", 0x7feda2f0c269 "initgrExpireTimestamp", 0x7feda2f0c03d "objectClass", 0x7feda2f0c059 "origPrimaryGroupGidNumber", 0x7feda2f0c14d "objectSIDString", 0x7feda2f0bf8b "userPrincipalName", 0x7feda2f0c4e8 "overrideDN", 0x7feda2f0c4f3 "overrideObjectDN", 0x7feda2f0bfaa "defaultOverrideName", 0x0}
        msg = 0x7feda34b6c10
        sysdb_name = <optimized out>
        c = <optimized out>
        extra_flag = <optimized out>
        __FUNCTION__ = "nss_cmd_initgroups_search"
#12 0x00007feda2ef6b28 in nss_cmd_getby_dp_callback (err_maj=<optimized out>, err_min=0, err_msg=0x7feda34a68c0 "Success (Success)", ptr=<optimized out>) at src/responder/nss/nsssrv_cmd.c:1208
        dctx = 0x7feda34a2cb0
        cmdctx = 0x7feda34b12d0
        cctx = 0x7feda34ac7a0
        ret = <optimized out>
        check_subdomains = <optimized out>
        nctx = <optimized out>
        __FUNCTION__ = "nss_cmd_getby_dp_callback"
#13 0x00007feda2eed2b5 in nsssrv_dp_send_acct_req_done (req=0x0) at src/responder/nss/nsssrv_cmd.c:759
        cb_ctx = 0x7feda34ad690
        ret = 0
        err_maj = 0
        err_min = 0
        err_msg = 0x7feda34a68c0 "Success (Success)"
        __FUNCTION__ = "nsssrv_dp_send_acct_req_done"
#14 0x00007feda2f04afc in sss_dp_internal_get_done (pending=<optimized out>, ptr=<optimized out>) at src/responder/common/responder_dp.c:802
        ret = 0
        req = 0x7feda34b7030
        sdp_req = 0x7feda34b7240
        cb = 0x7feda34b7460
        state = <optimized out>
        cb_state = 0x7feda34b6c10
        __FUNCTION__ = "sss_dp_internal_get_done"
#15 0x00007feda21dd862 in complete_pending_call_and_unlock () from /lib64/libdbus-1.so.3
No symbol table info available.
#16 0x00007feda21e0b51 in dbus_connection_dispatch () from /lib64/libdbus-1.so.3
No symbol table info available.
#17 0x00007feda28881e2 in sbus_dispatch (ev=0x7feda349a4a0, te=<optimized out>, tv=..., data=<optimized out>) at src/sbus/sssd_dbus_connection.c:96
        new_event = <optimized out>
        conn = 0x7feda34a4b80
        dbus_conn = 0x7feda34a7550
        ret = <optimized out>
        __FUNCTION__ = "sbus_dispatch"
#18 0x00007fed9f15e22f in tevent_common_loop_timer_delay (ev=ev@entry=0x7feda349a4a0) at ../tevent_timed.c:341
        current_time = {tv_sec = 1438913911, tv_usec = 784255}
        te = 0x7feda34a8d60
#19 0x00007fed9f15f23a in epoll_event_loop_once (ev=0x7feda349a4a0, location=<optimized out>) at ../tevent_epoll.c:911
        epoll_ev = 0x7feda349a6e0
        tval = {tv_sec = 57, tv_usec = 999997}
        panic_triggered = false
#20 0x00007fed9f15d937 in std_event_loop_once (ev=0x7feda349a4a0, location=0x7feda28aac33 "src/util/server.c:668") at ../tevent_standard.c:114
        glue_ptr = <optimized out>
        glue = 0x7feda349a590
        ret = <optimized out>
#21 0x00007fed9f15a0fd in _tevent_loop_once (ev=ev@entry=0x7feda349a4a0, location=location@entry=0x7feda28aac33 "src/util/server.c:668") at ../tevent.c:533
        ret = <optimized out>
        nesting_stack_ptr = 0x0
#22 0x00007fed9f15a29b in tevent_common_loop_wait (ev=0x7feda349a4a0, location=0x7feda28aac33 "src/util/server.c:668") at ../tevent.c:637
        ret = <optimized out>
#23 0x00007fed9f15d8d7 in std_event_loop_wait (ev=0x7feda349a4a0, location=0x7feda28aac33 "src/util/server.c:668") at ../tevent_standard.c:140
        glue_ptr = <optimized out>
        glue = 0x7feda349a590
        ret = <optimized out>
#24 0x00007feda2891e23 in server_loop (main_ctx=0x7feda349b8f0) at src/util/server.c:668
No locals.
#25 0x00007feda2eebec7 in main (argc=6, argv=<optimized out>) at src/responder/nss/nsssrv.c:626
        opt = <optimized out>
        pc = 0x7feda3499060
        main_ctx = 0x7feda349b8f0
        ret = <optimized out>
        uid = 0
        gid = 0
        long_options = {{longName = 0x0, shortName = 0 '\000', argInfo = 4, arg = 0x7feda2850320 <poptHelpOptions>, val = 0, descrip = 0x7feda2f093b9 "Help options:", argDescrip = 0x0}, {longName = 0x7feda2f093c7 "debug-level", shortName = 100 'd', argInfo = 2, arg = 0x7fed9f567120 <debug_level>, val = 0, descrip = 0x7feda2f093d3 "Debug level", argDescrip = 0x0}, {longName = 0x7feda2f093df "debug-to-files", shortName = 102 'f', argInfo = 0, arg = 0x7fed9f56711c <debug_to_file>, val = 0, descrip = 0x7feda2f09930 "Send the debug output to files instead of stderr", argDescrip = 0x0}, {longName = 0x7feda2f093ee "debug-to-stderr", shortName = 0 '\000', argInfo = 1073741824, arg = 0x7fed9f567118 <debug_to_stderr>, val = 0, descrip = 0x7feda2f09968 "Send the debug output to stderr directly.", argDescrip = 0x0}, {longName = 0x7feda2f093fe "debug-timestamps", shortName = 0 '\000', argInfo = 2, arg = 0x7fed9f5670f4 <debug_timestamps>, val = 0, descrip = 0x7feda2f0940f "Add debug times!
 tamps", a
 rgDescrip = 0x0}, {longName = 0x7feda2f09424 "debug-microseconds", shortName = 0 '\000', argInfo = 2, arg = 0x7fed9f5670f0 <debug_microseconds>, val = 0, descrip = 0x7feda2f09998 "Show timestamps with microseconds", argDescrip = 0x0}, {longName = 0x7feda2f09437 "uid", shortName = 0 '\000', argInfo = 2, arg = 0x7fff1689a910, val = 0, descrip = 0x7feda2f099c0 "The user ID to run the server as", argDescrip = 0x0}, {longName = 0x7feda2f0943b "gid", shortName = 0 '\000', argInfo = 2, arg = 0x7fff1689a914, val = 0, descrip = 0x7feda2f099e8 "The group ID to run the server as", argDescrip = 0x0}, {longName = 0x0, shortName = 0 '\000', argInfo = 0, arg = 0x0, val = 0, descrip = 0x0, argDescrip = 0x0}}
        __FUNCTION__ = "main"

I can provide coredump + packages with debug_symbols

Fields changed

owner: somebody => lslebodn

Fields changed

patch: 0 => 1
status: new => assigned

Fields changed

milestone: NEEDS_TRIAGE => SSSD 1.13.2

Patch was submitted, should be included in 1.13.1

milestone: SSSD 1.13.2 => SSSD 1.13.1

resolution: => fixed
status: assigned => closed

Metadata Update from @lslebodn:
- Issue assigned to lslebodn
- Issue set to the milestone: SSSD 1.13.1

2 years ago

Login to comment on this ticket.

Metadata