[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#3989) syncprov core dumps when combined with uniqueness overlay

I've read that portion of code up to back-bdb internals (where I nearly 
get lost) and I don't see anything strange.  I'd be curious to see what 
data your ACL is requesting; can you print (massaged, if required), from 
frame #9:
Can you reduce it to a very simple setup (e.g. from the testsuite data 
plus the offending ACL) so that we can try to reproduce and track it?


quanah@stanford.edu wrote:

>--On Wednesday, August 31, 2005 3:10 AM +0000 openldap-its@OpenLDAP.org 
>I've found how to recreate this as many times as I want in 2.3.7, so gdb'd 
>the running process.
>Output is:
>Program received signal SIGSEGV, Segmentation fault.
>[Switching to LWP 3]
>0xfedc1e58 in _malloc_unlocked () from /usr/lib/libc.so.1
>(gdb) thread 3
>[Switching to thread 3 (LWP 4)]#0  __lock_get_internal (lt=0x22e608, 
>locker=2147483657, flags=0, obj=0x0, lock_mode=DB_LOCK_READ, timeout=0,
>    lock=0x7dbfd470) at ../lock/lock.c:843
>843     ../lock/lock.c: No such file or directory.
>        in ../lock/lock.c
>(gdb) bt
>#0  __lock_get_internal (lt=0x22e608, locker=2147483657, flags=0, obj=0x0, 
>lock_mode=DB_LOCK_READ, timeout=0, lock=0x7dbfd470) at ../lock/lock.c:843
>#1  0xff28feac in __lock_get (dbenv=0x22be48, locker=2147483657, flags=0, 
>obj=0x7dbfd280, lock_mode=DB_LOCK_READ, lock=0x7dbfd470) at 
>#2  0xff28fe10 in __lock_get_pp (dbenv=0x22be48, locker=2147483657, 
>flags=0, obj=0x7dbfd280, lock_mode=DB_LOCK_READ, lock=0x7dbfd470) at 
>#3  0x0009aac4 in bdb_cache_entry_db_lock (env=0x22be48, locker=2147483657, 
>ei=0xbb69a8, rw=0, tryOnly=0, lock=0x7dbfd470) at cache.c:135
>#4  0x0009b2a0 in bdb_cache_find_id (op=0x267e10, tid=0xbe0120, id=15, 
>eip=0x7dbfd3ec, islocked=0, locker=2147483657, lock=0x7dbfd470) at 
>#5  0x0009ec70 in bdb_dn2entry (op=0x267e10, tid=0xbe0120, dn=0x7dbfdaf0, 
>e=0x7dbfd468, matched=0, locker=2147483657, lock=0x7dbfd470) at 
>#6  0x000a25cc in bdb_entry_get (op=0x267e10, ndn=0x7dbfdaf0, oc=0x1b9af0, 
>at=0x162800, rw=0, ent=0x7dbfd56c) at id2entry.c:349
>#7  0x00032378 in be_entry_get_rw (op=0x1b35b0, ndn=0x7dbfdaf0, 
>oc=0x1b9af0, at=0x162800, rw=0, e=0x7dbfd56c) at backend.c:1194
>#8  0x00032418 in fe_acl_group (op=0x267e10, target=0x7dbff470, 
>gr_ndn=0x7dbfdaf0, op_ndn=0x267ea8, group_oc=0x1b9af0, group_at=0x1de6a0) 
>at backend.c:1239
>#9  0x000328f4 in backend_group (op=0x267e10, target=0x7dbff470, 
>gr_ndn=0x7dbfdaf0, op_ndn=0x267ea8, group_oc=0x1b9af0, group_at=0x1de6a0) 
>at backend.c:1390
>#10 0x00044dc4 in slap_acl_mask (a=0x1dfa90, mask=0x7dbfdfb4, op=0x267e10, 
>e=0x7dbff470, desc=0x1dfd20, val=0x0, nmatch=100, matches=0x7dbfdfb8, 
>    state=0x7dbfe9a8) at acl.c:1849
>#11 0x00043094 in access_allowed_mask (op=0x267e10, e=0x7dbff470, 
>desc=0x251528, val=0x0, access=ACL_WDEL, state=0x7dbfe9a8, maskp=0x0) at 
>#12 0x00045e8c in acl_check_modlist (op=0x267e10, e=0x7dbff470, 
>mlist=0x251168) at acl.c:2334
>#13 0x00078a98 in bdb_modify_internal (op=0x267e10, tid=0xbe01a8, 
>modlist=0x251168, e=0x7dbff470, text=0x7dbffd6c, textbuf=0x7dbff4b0 "", 
>    at modify.c:49
>#14 0x000798cc in bdb_modify (op=0x267e10, rs=0x7dbffd58) at modify.c:467
>#15 0x00072adc in overlay_op_walk (op=0x267e10, rs=0x7dbffd58, which=32768, 
>oi=0x159754, on=0x8000) at backover.c:488
>#16 0x00072bd0 in over_op_func (op=0x267e10, rs=0x7dbffd58, 
>which=op_modify) at backover.c:540
>#17 0x0003a950 in fe_op_modify (op=0x267e10, rs=0x7dbffd58) at modify.c:417
>#18 0x0003a158 in do_modify (op=0x267e10, rs=0x7dbffd58) at modify.c:200
>#19 0x00026ba4 in connection_operation (ctx=0xf9400, arg_v=0x267e10) at 
>#20 0xff33cd70 in ldap_int_thread_pool_wrapper (xpool=0x190a00) at 
>#21 0xfed658c8 in _lwp_start () from /usr/lib/lwp/libthread.so.1
>#22 0xfed658c8 in _lwp_start () from /usr/lib/lwp/libthread.so.1
>Previous frame identical to this frame (corrupt stack?)
>(gdb) thread 2
>[Switching to thread 2 (LWP 3)]#0  0xfedc1e58 in _malloc_unlocked () from 
>(gdb) bt
>#0  0xfedc1e58 in _malloc_unlocked () from /usr/lib/libc.so.1
>#1  0xfedc1ce0 in malloc () from /usr/lib/libc.so.1
>#2  0xfec8d1b8 in decrypt_internal_derived (context=0x2672d8, 
>crypto=0xbcd980, usage=24, data=0xbe27e0, len=51, result=0x7e3ff140, 
>    at ../../../lib/krb5/crypto.c:3454
>#3  0xfec8d78c in krb5_decrypt (context=0x2672d8, crypto=0xbcd980, 
>usage=24, data=0xbe27e0, len=51, result=0x7e3ff140) at 
>#4  0xfecdb050 in _gssapi_unwrap_cfx (minor_status=0x7e3ff23c, 
>context_handle=0x18, input_message_buffer=0x7e3ff140, 
>    conf_state=0xbe27e0, qop_state=0x0, key=0xc0c700) at 
>#5  0xfece0ad4 in gss_unwrap (minor_status=0x7e3ff23c, 
>context_handle=0xbe0508, input_message_buffer=0x7e3ff248, 
>    conf_state=0x0, qop_state=0x0) at ../../../lib/gssapi/unwrap.c:406
>#6  0xfed01af0 in gssapi_decode_packet () from 
>#7  0xff1e272c in _plug_decode () from /usr/local/lib/libsasl2.so.2
>#8  0xfed01c24 in gssapi_decode () from 
>#9  0xff1d88fc in sasl_decode () from /usr/local/lib/libsasl2.so.2
>#10 0xff3433bc in sb_sasl_read (sbiod=0xbcd660, buf=0xbe076f, len=8) at 
>#11 0xff309af8 in sb_debug_read (sbiod=0xbcd4c0, buf=0xbe076f, len=8) at 
>#12 0xff308f88 in ber_int_sb_read (sb=0x250fd8, buf=0xbe076f, len=8) at 
>#13 0xff306568 in ber_get_next (sb=0x250fd8, len=0x7e3ff67c, ber=0xbe0760) 
>at io.c:514
>#14 0x0002741c in connection_input (conn=0x253370) at connection.c:1397
>#15 0x00026f38 in connection_read (s=18) at connection.c:1322
>#16 0x00024174 in slapd_daemon_task (ptr=0xf1400) at daemon.c:1879
>#17 0xfed658c8 in _lwp_start () from /usr/lib/lwp/libthread.so.1
>#18 0xfed658c8 in _lwp_start () from /usr/lib/lwp/libthread.so.1
>Previous frame identical to this frame (corrupt stack?)
>(gdb) thread 1
>[Switching to thread 1 (LWP 1)]#0  0xfee1f33c in _lwp_wait () from 
>(gdb) bt
>#0  0xfee1f33c in _lwp_wait () from /usr/lib/libc.so.1
>#1  0xfed5d7b8 in lwp_wait () from /usr/lib/lwp/libthread.so.1
>#2  0xfed590a0 in _thrp_join () from /usr/lib/lwp/libthread.so.1
>#3  0x0002480c in slapd_daemon () at daemon.c:2045
>#4  0x000169ec in main ()
>Quanah Gibson-Mount
>Principal Software Developer
>ITSS/Shared Services
>Stanford University
>GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
>"These censorship operations against schools and libraries are stronger
>than ever in the present religio-political climate. They often focus on
>fantasy and sf books, which foster that deadly enemy to bigotry and blind
>faith, the imagination." -- Ursula K. Le Guin

    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497