[Swan-dev] [libreswan/libreswan] Libreswan 3.23 segfault (#169) (fwd)

Paul Wouters paul at nohats.ca
Mon Nov 26 14:20:34 UTC 2018 


---------- Forwarded message ----------
Date: Mon, 26 Nov 2018 09:09:00
From: csszep <notifications at github.com>
Cc: "Paul Wouters (libreswan)" <paul at cypherpunks.ca>,
     Comment <comment at noreply.github.com>
To: libreswan/libreswan <libreswan at noreply.github.com>
Subject: Re: [libreswan/libreswan] Libreswan 3.23 segfault (#169)


The same happened with Libreswan 3.27. :(

[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
Core was generated by `/usr/lib/ipsec/pluto --config /etc/ipsec.conf --nofork'.
Program terminated with signal SIGSEGV, Segmentation fault.
#0 0x00007fc7a37d612b in find_phase2_state_to_delete (p1st=p1st at entry=0x7fc7a5e43870, protoid=3 '\003', spi=501675351, bogus=bogus at entry=0x7ffdfc0696fb)
at /home/szepcs/work/327/libreswan-3.27/programs/pluto/state.c:1904
1904 FOR_EACH_COOKIED_STATE(st, {
(gdb) bt
#0 0x00007fc7a37d612b in find_phase2_state_to_delete (p1st=p1st at entry=0x7fc7a5e43870, protoid=3 '\003', spi=501675351, bogus=bogus at entry=0x7ffdfc0696fb)
at /home/szepcs/work/327/libreswan-3.27/programs/pluto/state.c:1904
#1 0x00007fc7a37ed2e0 in accept_delete (md=md at entry=0x7fc7a5ca8ad0, p=p at entry=0x7fc7a5ca8cd0) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/ikev1_main.c:2527
#2 0x00007fc7a37e6d38 in process_packet_tail (mdp=mdp at entry=0x7ffdfc0699e0) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/ikev1.c:2267
#3 0x00007fc7a37e76cd in process_v1_packet (mdp=mdp at entry=0x7ffdfc0699e0) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/ikev1.c:1791
#4 0x00007fc7a381fbb8 in process_packet (mdp=mdp at entry=0x7ffdfc0699e0) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/demux.c:359
#5 0x00007fc7a381fce1 in process_md (mdp=mdp at entry=0x7ffdfc0699e0) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/demux.c:392
#6 0x00007fc7a38202e8 in comm_handle (ifp=) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/demux.c:433
#7 comm_handle_cb (fd=, event=, arg=) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/demux.c:442
#8 0x00007fc7a1791f24 in event_base_loop () from /usr/lib/x86_64-linux-gnu/libevent-2.0.so.5
#9 0x00007fc7a37dcaf5 in call_server () at /home/szepcs/work/327/libreswan-3.27/programs/pluto/server.c:1129
#10 0x00007fc7a37a2af5 in main (argc=, argv=) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/plutomain.c:1763

(gdb) bt full
#0 0x00007fc7a37d612b in find_phase2_state_to_delete (p1st=p1st at entry=0x7fc7a5e43870, protoid=3 '\003', spi=501675351, bogus=bogus at entry=0x7ffdfc0696fb)
at /home/szepcs/work/327/libreswan-3.27/programs/pluto/state.c:1904
c = 0x7fc7a5bfdf90
stentry = 0x7fc7a5e7d1b8
st = 0x7fc7a5e83030
p1c = 0xfbfbfbfbfbfbfbfb
bogusst = 0x0
#1 0x00007fc7a37ed2e0 in accept_delete (md=md at entry=0x7fc7a5ca8ad0, p=p at entry=0x7fc7a5ca8cd0) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/ikev1_main.c:2527
spi = 501675351
bogus = false
dst =
st = 0x7fc7a5e43870
d =
sizespi =
i = 1
self_delete = false
func = "accept_delete"
#2 0x00007fc7a37e6d38 in process_packet_tail (mdp=mdp at entry=0x7ffdfc0699e0) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/ikev1.c:2267
p = 0x7fc7a5ca8cd0
md = 0x7fc7a5ca8ad0
st = 0x7fc7a5e43870
from_state = STATE_INFO_PROTECTED
smc = 0x7fc7a3ad6e30 <v1_state_microcode_table+1392>
new_iv_set =
self_delete = false
func = "process_packet_tail"
#3 0x00007fc7a37e76cd in process_v1_packet (mdp=mdp at entry=0x7ffdfc0699e0) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/ikev1.c:1791
md = 0x7fc7a5ca8ad0
smc = 0x7fc7a3ad6e30 <v1_state_microcode_table+1392>
new_iv_set = true
st = 0x7fc7a5e43870
from_state = STATE_INFO_PROTECTED
func = "process_v1_packet"
fs =
FUNCTION = "process_v1_packet"
#4 0x00007fc7a381fbb8 in process_packet (mdp=mdp at entry=0x7ffdfc0699e0) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/demux.c:359
md =
vmaj =
vmin =
#5 0x00007fc7a381fce1 in process_md (mdp=mdp at entry=0x7ffdfc0699e0) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/demux.c:392
old_from = {u = {v4 = {sin_family = 0, sin_port = 0, sin_addr = {s_addr = 0}, sin_zero = "\000\000\000\000\000\000\000"}, v6 = {sin6_family = 0, sin6_port = 0,
sin6_flowinfo = 0, sin6_addr = {__in6_u = {__u6_addr8 = '\000' <repeats 15 times>, __u6_addr16 = {0, 0, 0, 0, 0, 0, 0, 0}, __u6_addr32 = {0, 0, 0, 0}}},
sin6_scope_id = 0}}}
func = "process_md"
#6 0x00007fc7a38202e8 in comm_handle (ifp=) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/demux.c:433
---Type to continue, or q to quit---
md = 0x7fc7a5ca8ad0
#7 comm_handle_cb (fd=, event=, arg=) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/demux.c:442
No locals.
#8 0x00007fc7a1791f24 in event_base_loop () from /usr/lib/x86_64-linux-gnu/libevent-2.0.so.5
No symbol table info available.
#9 0x00007fc7a37dcaf5 in call_server () at /home/szepcs/work/327/libreswan-3.27/programs/pluto/server.c:1129
r =
func = "call_server"
#10 0x00007fc7a37a2af5 in main (argc=, argv=) at /home/szepcs/work/327/libreswan-3.27/programs/pluto/plutomain.c:1763
lockfd =
log_to_stderr_desired =
log_to_file_desired = false
keep_alive =
virtual_private = 0x0
func = "main"

—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub, or mute the thread.[AC3V-XQVWLkycfp3R24Bc4VsAeRXz_9jks5uy_X8gaJpZM4TAMuY.gif]

More information about the Swan-dev mailing list