From owner-freebsd-current Sat Aug 31 8:45:27 2002 Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CEC7A37B400; Sat, 31 Aug 2002 08:45:23 -0700 (PDT) Received: from totem.fix.no (totem.fix.no [80.91.32.29]) by mx1.FreeBSD.org (Postfix) with ESMTP id 731B643E42; Sat, 31 Aug 2002 08:45:23 -0700 (PDT) (envelope-from anders@totem.fix.no) Received: by totem.fix.no (Postfix, from userid 1000) id B4E1A20273; Sat, 31 Aug 2002 17:45:26 +0200 (CEST) To: FreeBSD-gnats-submit@freebsd.org Subject: Truss segfaults when tracing sshd From: Anders Nordby Reply-To: Anders Nordby Cc: current@FreeBSD.org X-send-pr-version: 3.113 X-GNATS-Notify: Message-Id: <20020831154526.B4E1A20273@totem.fix.no> Date: Sat, 31 Aug 2002 17:45:26 +0200 (CEST) Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG >Submitter-Id: current-users >Originator: Anders Nordby >Organization: >Confidential: no >Synopsis: Truss segfaults when tracing sshd >Severity: serious >Priority: medium >Category: bin >Class: sw-bug >Release: FreeBSD 5.0-CURRENT i386 >Environment: FreeBSD current 5.0-CURRENT FreeBSD 5.0-CURRENT #0: Sat Aug 31 09:31:05 GMT 2002 root@current:/usr/obj/usr/src/sys/MYGENERIC i386 Filesystems mounted: /dev/ad0s1a on / (ufs, local) devfs on /dev (devfs, local) /dev/ad0s1f on /tmp (ufs, local, soft-updates) /dev/ad0s1g on /usr (ufs, local, soft-updates) /dev/ad0s1e on /var (ufs, local, soft-updates) eggsilo:/space/distfiles on /usr/ports/distfiles (nfs) procfs on /proc (procfs, local) The processor on the system is a 466 MHz Intel Celeron. >Description: Find your sshd process: # sockstat -l | grep sshd root sshd 175 3 tcp6 *:22 *:* root sshd 175 4 tcp4 *:22 *:* Truss it through gdb: # gdb truss GNU gdb 5.2.0 (FreeBSD) 20020627 Copyright 2002 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain conditions. Type "show copying" to see the conditions. There is absolutely no warranty for GDB. Type "show warranty" for details. This GDB was configured as "i386-undermydesk-freebsd"... (no debugging symbols found)... (gdb) run -p 175 Starting program: /usr/bin/truss -p 175 Now log in to the machine (I'm logging in as root), and return to gdb: (no debugging symbols found)...(no debugging symbols found)... Program received signal SIGSEGV, Segmentation fault. 0x08049c77 in free () (gdb) bt #0 0x08049c77 in free () #1 0x2806d000 in ?? () #2 0x08049e3e in free () #3 0x0804eb6d in free () #4 0x08049182 in free () #5 0x08048d31 in free () (gdb) >How-To-Repeat: On a vanilla -current system from today: # truss -p `sockstat -l | egrep 'sshd.*tcp4' | awk '{print $3}'` Log into the system with sshd, and truss will segfault: Segmentation fault (core dumped) This also seems to happen if you truss sshd while logging out another ssh session. >Fix: N/A To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message