Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 12 Dec 2004 20:24:17 -0500 (EST)
From:      Atom 'Smasher' <atom@suspicious.org>
To:        gnupg-devel@gnupg.org, freebsd-bugs@freebsd.org
Subject:   GnuPG + FreeBSD 5.3 = intermitent memory warning
Message-ID:  <20041212192018.P99530@willy.wonka>
In-Reply-To: <20041210150749.GA1379@jabberwocky.com>
References:  <20041208014034.A62757@willy.wonka> <20041210150749.GA1379@jabberwocky.com>
index | next in thread | previous in thread | raw e-mail 

[-- Attachment #1 --]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

** cross posted **

for those not familiar with GnuPG, read here for relevant background info: 
http://www.gnupg.org/documentation/faqs.html#q6.1

if the binary is suid-root, it should not generate warnings about insecure 
memory. my binary *is* suid-root, and whether it's run as a privileged or 
unprivileged user i get intermittent warnings about insecure memory.

i only noticed this intermittent behavior after upgrading from FreeBSD 4.9 
to 5.3. i'm seeing essentially the same results with GnuPG 1.2 and 1.3 
branches.

attached is a script and the output from 1000000 invocations of gpg (just 
over 24 hours on a duron-1200). there were 543398 (almost 55%) errors. at 
first i thought that there was a relation between the errors and 
downloading large files, but now i'm not sure if that's a factor.

SHA-1 checksums:
   126694aa13085e757c1fb75e105549b9d6997fc2 gnupg_err.txt.gz
   6332229dafcc8f5b4becfc74fd2f39b9af4d2164 gpg_memory_warning.sh.gz

the "gnupg_err.txt" was produced by running:
 	./gpg_memory_warning.sh 1000 1000 | tee gnupg_err.txt



On Fri, 10 Dec 2004, David Shaw wrote:
> On Wed, Dec 08, 2004 at 02:12:30AM -0500, Atom 'Smasher' wrote:
>
>> i thought i was either going crazy or stupid, but i really am getting
>> intermittent warnings:
>>  	WARNING: using insecure memory!
>>
>> the test above is unique, because usually in a test of 100, 500, or 1000
>> trials i get either 0% or 100% warnings. before getting that result, i got
>> a bunch of 100% error... after running that test i got a bunch of 0%
>> error.
>>
>> i suspect that it might be a bug in FreeBSD 5.3-RELEASE since i haven't
>> noticed it before. now i'm having the same problem with 1.2.6 and 1.3.92.
>> has anyone else noticed this?
>
> I tried to duplicate it on Linux, but without any luck.  It might be a
> FreeBSD thing, or it might be something particular to your machine?
> I've never heard of this happenening, even on FreeBSD, so I don't know
> what to think yet.
>
>> please advise how to trace this problem when it appears... i'm not sure
>> which --debug flag(s) or process-tracking applications (with what options)
>> will be most useful.
>
> If you do C, take a peek at the code in util/secmem.c:lock_pool.  It
> is unfortunately quite rich in #ifdefs since locking memory is pretty
> platform-specific.  Add some debugging there - say, printing out errno
> whenever mlock() returns -1.
=================

i'm not much good in C :(



- -- 
         ...atom

  _________________________________________
  PGP key - http://atom.smasher.org/pgp.txt
  762A 3B98 A3C3 96C9 C6B7 582A B88D 52E4 D9F5 7808
  -------------------------------------------------

 	"Military men are just dumb stupid animals
 	 to be used as pawns in foreign policy."
 		-- Henry Kissinger,
 	Kiss the Boys Goodbye: How the United
 	States Betrayed Its Own POWs in Vietnam

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.3.92 (FreeBSD)
Comment: What is this gibberish?
Comment: http://atom.smasher.org/links/#digital_signatures

iQEcBAEBCAAGBQJBvO9JAAoJEAx/d+cTpVci1qIH/A2wqA3gUjm2waWnzqBsKEj1
NiEp4cIbxsrDRsFzmHxlJzSL322toXoDIbBVKvsBLqH9ZgtTos3Kc26sk+Vt1lo9
IpsKj2QxXEcXKgs6drVgLXacfgldcl/WCY2iuicdMs5gw/415rKZQyS/Eerhx7jm
0K+xGxhfJYaaS6lPswZvB1GeANwxU9nVrbmbTb/6roNiMxL6O8BThwP3jD/Ne+FB
v7YxkbFQUyqq4WMO3Qfee2gy9zox+BG8oaC7xBNlvlGZXH7sPlotzJkpZhKVoBHF
o5TM+vSYSGJV/OvXEH/XaWKApC1e+mfCKYqrCi0eMiT8X4bXofVAcry0oc1HMOQ=
=z+OV
-----END PGP SIGNATURE-----
[-- Attachment #2 --]
YAQo0ǟOqmkx)`LC%1Kv(U9)jm~l~w;̄<1)cOjQX
BnsaQZr̕^k)d1Y8*mrnR;S!F|3zx1I<
Z+]"ad!F0[@2S<r\	B,2a0<MQXT]HݫOtʘ^n-jS]O `6EɼF^bG/δWAhQAC%PMHD*NH1pAKv*_S^vpM~"N&U%_"ɹ\9(\45ϚU;ҥl2ӐzԨfBPMY
-};|2EW =DUsk;~t؛2owy˚>2al
֮=1XᗋۛQR_^1:tyA܁X"
[-- Attachment #3 --]
A}[ú
D, ^/,h˹od65z_G+*aa%'a
0=]_Ftxxs0/Ez%䥈):BX$|	s]^:Ndaˆe/[6–
< 6ȃ
lld٠tLl]6?}l{lG_6Z/m=a@V!l]JF)/hCZvGO\m1M~t
aF>[6=MrM~Q#Lfɚ⃰.%$._صR<azglŋJgB&8sqsqI]	u6/A߇mh-_\ˤwZ!fmC\
!h-{\˲q%@eYIӻiYEId=k6MܲIEb=eOXR? VĭUIiKOwjgs?p-\Eu%/)ӕ,+^".^rge@kY5AkI^"fEL^"fE̞.:ڼ1i9yc敍yW6m^敍6=%y"}ﻱX6=&`crƼE;[NX߿=%{.ZK3{.33{aƍ}qc}߸X7}1i9yc6-m}76[N^؞]I7m >۳ \$>Y	qdgAh䍝mɅAgA,ɟKϜ?/)e',HȟKO33gAKk5ZK3gAKFL^".^RzKx!gH%gΐȟKϜ!Zf['/lϐaB\3$=C2‚J͐ t&5C:h-"8fHk5CZȍq&/=[ZDV'q&/)ń&/	Ӝ8Ys &/?//9ō8KFA\%#.^
zq'|i-9&&/?s<EgF|	_&i➚/&!|)p-gu5Cuic	}kYmCwثFql_ru՜|͉:y+~!V%dqO͂bO~|s:j"+\6,Q\I\g!UmaJEϓ' WeRA_{蝼j=Śݫw"_}YZ·.lr|Qop}W~0Cm_11:ī٘b_`\'#~1'uAC_̇oO8(9n^vRF@PeŐL>329r}?#?SІ/|bɯKTZ#HAy:C&aQB4\!NʷQ:@nRxq>5jK|tuE!YW엞_??t6vsI:aF7zQ |XE2[5=Nj:rQZgP=8Al_)GJF2K%߻;!9?Q!C!&!f=D\Ļg
OsM;~)+Cy"ު5u}{#!kuv_l|b^矵ON}!ZQ+~16u^tw|^6<}]3!:~wu3*|jߵ̓:~}mw̛/vz{_S\>uV>zwLty:ݼvv}fO5_E3YY`;p>3g(aXΪC&aB9uJGSMIzY3fq2C0_vاޱƼC}js^	9	;<aϬ>26tϫOaF6\U	‚*`íOa-c9厫d|tEU=d:+k#sއl7%^_v旫llkkS⬫sQ=F6dB'xlw0;!ޕ^b^JAxF9 jAK~l{@K~l/&P!09R_#u@Α*٠rW@Ã#[K6X@Αw~,v9ud;9:서#5/9r|IuB$='Il@Ω(#swor9Q}-sN
tΒ9G9&W->6!$vAΑ^B	39=eF6I9'_Z9	v=v39	=줜I94FgGqgGgGO9R{d{j9\9ـ=ss6)lMIPٚ )&	;)K94	6]b^g:,(&Xvsy&Xv
9	><IPיs#)̹}t&Yucޅc>?z~n>8qF-3j)pTg^ctl:su‚ꬭN^0:˪#ũβ[vQUZb%),V<zRo_:wc0:˪#ͩ*qTgcޅc̻Sϣ~r:kG'[dTgwOVdJ1_ma7A1-<ną,q0:JgGp<pN1_f'ەfRf#ەfRf%ۍfRf!(淮l7&vr1Ǽ+ǼǼ;|jvǓy&_|3(3(3ܨ)a'||τ6X0 ۅ45/=wL~CÔbBkP̗V g݄o&S_@/?=9FS0aKG='/g:J{@C9$⡖ottF}$̉wG}Úv\LHRa0ꬺ
ۗmP:k7OA_+~splԷ}>{%F%POYl|W<Kxd|+a:&g5ِ%ޣ_C̟իux~_;]kדvi9ALm ⓵MRkpoh^4(}FĜj;V,5Ƶ=Ē?1qN>ڦF>چ|c"&w6fa~n[	#|bmC2K'pV”84ݎavg	\<K'@>SzN|rj~ 4BqfPn3=tc1%3=&[ޛ|Pzo#i8W+-;̩0YJ'N\N$tu0҉։aw„zѭ70o8L0Ng9tJ>S['N>SC-udb/9*^9ߝudc:q1_|M.>&['N;'sxĝl7=0NV:A։aZ\u0zN@	:=X'`@}L	hă|:-P'7R҉c0Όr_agF9|03WϜr_aJ>sếM>y`m
help

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20041212192018.P99530>