[Bug 257217] net/freeradius3 update to 3.0.23.1 (Fixes "Bad talloc magic value" issue)

From: <bugzilla-noreply_at_freebsd.org>
Date: Fri, 16 Jul 2021 13:28:30 +0000
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=257217

            Bug ID: 257217
           Summary: net/freeradius3 update to 3.0.23.1 (Fixes "Bad talloc
                    magic value" issue)
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: zi_at_FreeBSD.org
          Reporter: zarychtam_at_plan-b.pwste.edu.pl
             Flags: maintainer-feedback?(zi_at_FreeBSD.org)
          Assignee: zi_at_FreeBSD.org

Created attachment 226497
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=226497&action=edit
freeradius update to 3.0.23.1

"Bad talloc magic value" issue has been fixed upstream[1] but we need to wait
for the next release. This issue is really nasty and we should fix it. The
upstream has rerelesed 3.0.23 packages to solve this. We probably have to deal
with it on our own. I created a patch to fix this, reorder docs and connect
totp examples.


The typical occurrence of the issue looks like this one:

talloc: access after free error - first free may be at src/main/state.c:364

Bad talloc magic value - access after free

talloc abort: Bad talloc magic value - access after free

Backtrace of last 7 frames:
0x80033b43f <fr_talloc_fault_setup+0x8f> at
/usr/local/lib/freeradius-3.0.23/libfreeradius-radius.so
0x80071229d <_talloc_get_type_abort+0x11d> at /usr/local/lib/libtalloc.so.2
0x258b26 <fr_state_discard+0x266> at /usr/local/sbin/radiusd
0x258d15 <fr_state_get_vps+0xe5> at /usr/local/sbin/radiusd
0x22feef <rad_authenticate+0x23f> at /usr/local/sbin/radiusd
0x264815 <request_inject+0x365> at /usr/local/sbin/radiusd
0x262b80 <exec_trigger+0x530> at /usr/local/sbin/radiusd

[1]http://lists.freeradius.org/pipermail/freeradius-users/2021-July/100341.html

-- 
You are receiving this mail because:
You are the assignee for the bug.
Received on Fri Jul 16 2021 - 13:28:30 UTC

Original text of this message