[Bug 233431] [bsnmpd] regression on 12-STABLE: crash on start

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Fri Nov 23 09:19:44 UTC 2018 

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=233431

            Bug ID: 233431
           Summary: [bsnmpd] regression on 12-STABLE: crash on start
           Product: Base System
           Version: 12.0-STABLE
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Some People
          Priority: ---
         Component: bin
          Assignee: bugs at FreeBSD.org
          Reporter: emz at norma.perm.ru

bsnmpd crashes right after start, was working on 11.x, regression happened
after upgrade to 12.x. 100% reproducible, multiple instances:

FreeBSD san01.bsh-ru.playkey.net 12.0-PRERELEASE FreeBSD 12.0-PRERELEASE
r340754 GENERIC  amd64
FreeBSD san01.boston.playkey.net 12.0-PRERELEASE FreeBSD 12.0-PRERELEASE
r340673 GENERIC  amd6

Backtrace:

# gdb /usr/sbin/bsnmpd bsnmpd.core 
GNU gdb 6.1.1 [FreeBSD]
Copyright 2004 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "amd64-marcel-freebsd"...
Core was generated by `/usr/sbin/bsnmpd -p /var/run/snmpd.pid'.
Program terminated with signal 11, Segmentation fault.
Reading symbols from /lib/libbegemot.so.4...Reading symbols from
/usr/lib/debug//lib/libbegemot.so.4.debug...done.
done.
Loaded symbols for /lib/libbegemot.so.4
Reading symbols from /usr/lib/libbsnmp.so.6...Reading symbols from
/usr/lib/debug//usr/lib/libbsnmp.so.6.debug...done.
done.
Loaded symbols for /usr/lib/libbsnmp.so.6
Reading symbols from /usr/lib/libwrap.so.6...Reading symbols from
/usr/lib/debug//usr/lib/libwrap.so.6.debug...done.
done.
Loaded symbols for /usr/lib/libwrap.so.6
Reading symbols from /lib/libc.so.7...Reading symbols from
/usr/lib/debug//lib/libc.so.7.debug...done.
done.
Loaded symbols for /lib/libc.so.7
Reading symbols from /lib/libcrypto.so.111...Reading symbols from
/usr/lib/debug//lib/libcrypto.so.111.debug...done.
done.
Loaded symbols for /lib/libcrypto.so.111
Reading symbols from /lib/libthr.so.3...Reading symbols from
/usr/lib/debug//lib/libthr.so.3.debug...done.
done.
Loaded symbols for /lib/libthr.so.3
Reading symbols from /libexec/ld-elf.so.1...Reading symbols from
/usr/lib/debug//libexec/ld-elf.so.1.debug...done.
done.
Loaded symbols for /libexec/ld-elf.so.1
#0  strlen (str=0x801062223 <Address 0x801062223 out of bounds>) at
/usr/src/lib/libc/string/strlen.c:101
101             va = (*lp - mask01);
[New Thread 8009e5000 (LWP 110269/<unknown>)]
(gdb) bt
#0  strlen (str=0x801062223 <Address 0x801062223 out of bounds>) at
/usr/src/lib/libc/string/strlen.c:101
#1  0x00000008003d95a9 in __vfprintf (fp=<value optimized out>,
locale=0x80044a4e8, fmt0=<value optimized out>, 
    ap=<value optimized out>) at /usr/src/lib/libc/stdio/vfprintf.c:854
#2  0x00000008003d71b4 in vfprintf_l (fp=0x80067bec0, locale=<value optimized
out>, fmt0=0x80028e62f "%s %d - - ", 
    ap=0x7fffffffb5b0) at /usr/src/lib/libc/stdio/vfprintf.c:285
#3  0x00000008003deedb in fprintf (fp=0x80067bec0, fmt=0x80028e62f "%s %d - -
")
    at /usr/src/lib/libc/stdio/fprintf.c:57
#4  0x000000080041e16b in vsyslog (pri=<value optimized out>, fmt=0x200963
"error in config file", ap=0x7fffffffc510)
    at /usr/src/lib/libc/gen/syslog.c:210
#5  0x000000080041de8d in syslog (pri=<value optimized out>, fmt=<value
optimized out>)
    at /usr/src/lib/libc/gen/syslog.c:129
#6  0x0000000000213bb1 in main (argc=0, argv=<value optimized out>)
Current language:  auto; currently minimal
(gdb) bt full
#0  strlen (str=0x801062223 <Address 0x801062223 out of bounds>) at
/usr/src/lib/libc/string/strlen.c:101
        p = 0x801062223 <Address 0x801062223 out of bounds>
        lp = (const long unsigned int *) 0x801062220
        va = <value optimized out>
        vb = <value optimized out>
#1  0x00000008003d95a9 in __vfprintf (fp=<value optimized out>,
locale=0x80044a4e8, fmt0=<value optimized out>, 
    ap=<value optimized out>) at /usr/src/lib/libc/stdio/vfprintf.c:854
        mbs = {__mbstate8 = 0x7fffffffb3c0 "\230����\177", _mbstateL =
140737488335768}
        mbseqlen = <value optimized out>
        xdigs_lower = 0x80029b7e0 "0123456789abcdef0123456789ABCDEF", ' '
<repeats 16 times>, '0' <repeats 16 times>, "��\023"
        xdigs_upper = 0x80029b7f0 "0123456789ABCDEF", ' ' <repeats 16 times>,
'0' <repeats 16 times>, "��\023"
        expstr = 0x7fffffffb3b8 "p"
        buf = 0x7fffffffb300 ""
        ox = 0x7fffffffb258 ""
        statargtable = 0x7fffffffb280
        orgap = 0x7fffffffb260
        fmt = <value optimized out>
        nextarg = <value optimized out>
        saved_errno = 2
        ret = 0
        decimal_point = 0x80028c072 "."
        decpt_len = 1
        cp = 0x801062223 <Address 0x801062223 out of bounds>
        dtoaresult = <value optimized out>
        realsz = 24
        size = <value optimized out>
        flags = 17179171
        ch = <value optimized out>
        n = <value optimized out>
        dprec = Cannot access memory at address 0x0
(gdb)

-- 
You are receiving this mail because:
You are the assignee for the bug.

More information about the freebsd-bugs mailing list