[Bug 268033] x11/xscreensaver: Crashing and dumping core on unlock

From: <bugzilla-noreply_at_freebsd.org>
Date: Tue, 13 Dec 2022 22:48:44 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=268033

--- Comment #6 from Duncan Bayne <duncan@bayne.id.au> ---
Okay, it seems to be going bang inside the PAM auth code.  Having rebuilt with
-faddress=sanitize in both CFLAGS and LDFLAGS:

xscreensaver-auth: 09:46:59: pwnam: couldn't get password of "duncan"
xscreensaver-auth: 09:46:59: running as user "duncan"
xscreensaver-auth: 09:46:59: PAM: pam_start ("xscreensaver", "duncan", ...) ==>
0 (Success)
xscreensaver-auth: 09:46:59:   pam_set_item (p, PAM_TTY, ":0.0") ==> 0
(Success)
xscreensaver-auth: 09:46:59:   pam_authenticate (...) ...
xscreensaver-auth: 09:46:59:     pam_conversation (ECHO_OFF="Password:") ...
xscreensaver-auth: 09:46:59: mouse is at 1669,594 on monitor 0 1920x1080+0+0
"eDP-1"
xscreensaver-auth: 09:46:59: theme: default
xscreensaver-auth: 09:47:00: kbd layout: English (US)
xscreensaver-auth: 09:47:00: re-creating window: size changed
xscreensaver-auth: 09:47:02: X11 KeyPress
xscreensaver-auth: 09:47:02: X11 KeyPress
... redacted ...
xscreensaver-auth: 09:47:04: X11 KeyPress
xscreensaver-auth: 09:47:04: authentication input finished
xscreensaver-auth: 09:47:04:     pam_conversation (...) ==> PAM_SUCCESS
xscreensaver-auth: 09:47:04:   pam_authenticate (...) ==> 0 (Success)
xscreensaver-auth: 09:47:04:   pam_acct_mgmt (...) ==> 0 (Success)
AddressSanitizer:DEADLYSIGNAL
=================================================================
==11906==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc
0x0008007e9e84 bp 0x7fffffffdf30 sp 0x7fffffffd6e8 T0)
==11906==The signal is caused by a READ memory access.
==11906==Hint: address points to the zero page.
    #0 0x8007e9e84 in strlen (/lib/libc.so.7+0x157e84)
    #1 0x8018f60c0  (/usr/lib/pam_exec.so.6+0x20c0)
    #2 0x8018f674f  (/usr/lib/pam_exec.so.6+0x274f)
    #3 0x8005c3a21 in openpam_dispatch (/usr/lib/libpam.so.6+0x7a21)
    #4 0x8005c7e4b in pam_setcred (/usr/lib/libpam.so.6+0xbe4b)
    #5 0x31a138 in pam_try_unlock
/usr/ports/x11/xscreensaver/work/xscreensaver-6.04/driver/passwd-pam.c:251:17
    #6 0x3165eb in xscreensaver_auth
/usr/ports/x11/xscreensaver/work/xscreensaver-6.04/driver/passwd.c:245:14
    #7 0x2f78bf in main
/usr/ports/x11/xscreensaver/work/xscreensaver-6.04/driver/xscreensaver-auth.c:325:12
    #8 0x273dcf in _start /usr/src/lib/csu/amd64/crt1_c.c:75:7
    #9 0x800357007  (<unknown module>)

AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV (/lib/libc.so.7+0x157e84) in strlen
==11906==ABORTING

-- 
You are receiving this mail because:
You are the assignee for the bug.