Opened 12 years ago

Last modified 7 years ago

#626 closed defect (Fixed)

Tor v0.2.1.0-alpha-dev r13924, r14010 SIGUSR2+SIGHUP results into invalid free()

Reported by: Safari Owned by:
Priority: Low Milestone:
Component: Core Tor/Tor Version: 0.1.2.19
Severity: Keywords:
Cc: Safari, nickm Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

This happens with at least r13924 and r14010.
Linux 2.6.24.3 x86_64, libevent-1.3d + epoll, openssl latest cvs.
SIGUSR2 does not print anything into logs. After I give SIGHUP after SIGUSR2, I get abort() from glibc.
I config file I have:
Log notice stderr

2008-03-13 23:03:55.563861070 [notice] Received reload signal (hup). Reloading config.
2008-03-13 23:03:55.569223290 * glibc detected * /usr/bin/tor: free(): invalid next size (fast): 0x00005555571dcf60 *
2008-03-13 23:03:55.569225572 ======= Backtrace: =========
2008-03-13 23:03:55.569226102 /lib64/libc.so.6[0x2af1432a7748]
2008-03-13 23:03:55.569226645 /lib64/libc.so.6(cfree+0x76)[0x2af1432a9d86]
2008-03-13 23:03:55.569227269 /usr/bin/tor[0x5555555edec2]
2008-03-13 23:03:55.569227712 /usr/bin/tor[0x5555555ee6a7]
2008-03-13 23:03:55.569228142 /usr/bin/tor[0x55555557bba1]
2008-03-13 23:03:55.569228582 /usr/bin/tor[0x55555557c07a]
2008-03-13 23:03:55.569243287 /usr/bin/tor[0x55555557d3af]
2008-03-13 23:03:55.569243891 /usr/bin/tor[0x55555557d782]
2008-03-13 23:03:55.569244346 /usr/bin/tor[0x5555555b622e]
2008-03-13 23:03:55.569244791 /usr/lib64/libevent-1.3d.so.1(event_base_loop+0x229)[0x2af1423ec659]
2008-03-13 23:03:55.569245497 /usr/bin/tor[0x5555555b96be]
2008-03-13 23:03:55.569245938 /usr/bin/tor[0x5555555b991d]
2008-03-13 23:03:55.569246378 /lib64/libc.so.6(libc_start_main+0xfa)[0x2af14324c36a]
2008-03-13 23:03:55.569247011 /usr/bin/tor[0x555555561169]
2008-03-13 23:03:55.569251150 ======= Memory map: ========
2008-03-13 23:03:55.569251729 40000000-40001000 ---p 40000000 00:00 0
2008-03-13 23:03:55.569252257 40001000-40801000 rw-p 40001000 00:00 0
2008-03-13 23:03:55.569252770 40801000-40802000 ---p 40801000 00:00 0
2008-03-13 23:03:55.569253305 40802000-41002000 rw-p 40802000 00:00 0
2008-03-13 23:03:55.569253826 3000000000-300001f000 r-xp 00000000 08:06 101888531 /lib64/ld-2.7.90.so
2008-03-13 23:03:55.569254692 300021e000-300021f000 r--p 0001e000 08:06 101888531 /lib64/ld-2.7.90.so
2008-03-13 23:03:55.569259036 300021f000-3000220000 rw-p 0001f000 08:06 101888531 /lib64/ld-2.7.90.so
2008-03-13 23:03:55.569268961 2aaaaab0b000-2aaaaab21000 r-xp 00000000 08:06 103129858 /lib64/libgcc_s-4.3.0-20080229.so.1
2008-03-13 23:03:55.569269977 2aaaaab21000-2aaaaad20000 ---p 00016000 08:06 103129858 /lib64/libgcc_s-4.3.0-20080229.so.1
2008-03-13 23:03:55.569270953 2aaaaad20000-2aaaaad21000 rw-p 00015000 08:06 103129858 /lib64/libgcc_s-4.3.0-20080229.so.1
2008-03-13 23:03:55.569296484 2aaaac000000-2aaaac021000 rw-p 2aaaac000000 00:00 0
2008-03-13 23:03:55.569297338 2aaaac021000-2aaab0000000 ---p 2aaaac021000 00:00 0
2008-03-13 23:03:55.569297996 2af142174000-2af142198000 rw-p 2af142174000 00:00 0
2008-03-13 23:03:55.569298689 2af1421d2000-2af1421e6000 r-xp 00000000 08:06 103433724 /lib64/libz.so.1.2.3
2008-03-13 23:03:55.569299557 2af1421e6000-2af1423e5000 ---p 00014000 08:06 103433724 /lib64/libz.so.1.2.3
2008-03-13 23:03:55.569304663 2af1423e5000-2af1423e6000 rw-p 00013000 08:06 103433724 /lib64/libz.so.1.2.3
2008-03-13 23:03:55.569305639 2af1423e6000-2af1423fc000 r-xp 00000000 08:08 39577920 /usr/lib64/libevent-1.3d.so.1.0.3
2008-03-13 23:03:55.569306609 2af1423fc000-2af1425fc000 ---p 00016000 08:08 39577920 /usr/lib64/libevent-1.3d.so.1.0.3
2008-03-13 23:03:55.569316445 2af1425fc000-2af1425fd000 rw-p 00016000 08:08 39577920 /usr/lib64/libevent-1.3d.so.1.0.3
2008-03-13 23:03:55.569317688 2af1425fd000-2af1425ff000 rw-p 2af1425fd000 00:00 0
2008-03-13 23:03:55.569318376 2af1425ff000-2af14264a000 r-xp 00000000 08:06 107246525 /lib64/libssl.so.0.9.9
2008-03-13 23:03:55.569319413 2af14264a000-2af142849000 ---p 0004b000 08:06 107246525 /lib64/libssl.so.0.9.9
2008-03-13 23:03:55.569324170 2af142849000-2af142851000 rw-p 0004a000 08:06 107246525 /lib64/libssl.so.0.9.9
2008-03-13 23:03:55.569325309 2af142851000-2af142852000 rw-p 2af142851000 00:00 0
2008-03-13 23:03:55.569326014 2af142852000-2af1429e3000 r-xp 00000000 08:06 107246526 /lib64/libcrypto.so.0.9.9
2008-03-13 23:03:55.569327080 2af1429e3000-2af142be3000 ---p 00191000 08:06 107246526 /lib64/libcrypto.so.0.9.9
2008-03-13 23:03:55.569331570 2af142be3000-2af142c06000 rw-p 00191000 08:06 107246526 /lib64/libcrypto.so.0.9.9
2008-03-13 23:03:55.569332704 2af142c06000-2af142c0a000 rw-p 2af142c06000 00:00 0
2008-03-13 23:03:55.569333409 2af142c0a000-2af142c0d000 r-xp 00000000 08:06 104315727 /lib64/libcap.so.1.10
2008-03-13 23:03:55.569334433 2af142c0d000-2af142e0c000 ---p 00003000 08:06 104315727 /lib64/libcap.so.1.10
2008-03-13 23:03:55.569344033 2af142e0c000-2af142e0d000 rw-p 00002000 08:06 104315727 /lib64/libcap.so.1.10
2008-03-13 23:03:55.569344961 2af142e0d000-2af142e24000 r-xp 00000000 08:06 101739635 /lib64/libpthread-2.7.90.so
2008-03-13 23:03:55.569345872 2af142e24000-2af143023000 ---p 00017000 08:06 101739635 /lib64/libpthread-2.7.90.so
2008-03-13 23:03:55.569346803 2af143023000-2af143024000 r--p 00016000 08:06 101739635 /lib64/libpthread-2.7.90.so
2008-03-13 23:03:55.569351250 2af143024000-2af143025000 rw-p 00017000 08:06 101739635 /lib64/libpthread-2.7.90.so
2008-03-13 23:03:55.569352261 2af143025000-2af14302a000 rw-p 2af143025000 00:00 0
2008-03-13 23:03:55.569352869 2af14302a000-2af14302c000 r-xp 00000000 08:06 101739637 /lib64/libdl-2.7.90.so
2008-03-13 23:03:55.569353763 2af14302c000-2af14322c000 ---p 00002000 08:06 101739637 /lib64/libdl-2.7.90.so
2008-03-13 23:03:55.569358212 2af14322c000-2af14322d000 r--p 00002000 08:06 101739637 /lib64/libdl-2.7.90.so
2008-03-13 23:03:55.569359156 2af14322d000-2af14322e000 rw-p 00003000 08:06 101739637 /lib64/libdl-2.7.90.so
2008-03-13 23:03:55.569360079 2af14322e000-2af143395000 r-xp 00000000 08:06 101739636 /lib64/libc-2.7.90.so
2008-03-13 23:03:55.569368855 2af143395000-2af143594000 ---p 00167000 08:06 101739636 /lib64/libc-2.7.90.so
2008-03-13 23:03:55.569369839 2af143594000-2af143598000 r--p 00166000 08:06 101739636 /lib64/libc-2.7.90.so
2008-03-13 23:03:55.569370710 2af143598000-2af143599000 rw-p 0016a000 08:06 101739636 /lib64/libc-2.7.90.so
2008-03-13 23:03:55.569371588 2af143599000-2af14359e000 rw-p 2af143599000 00:00 0
2008-03-13 23:03:55.569384967 2af14359e000-2af1435a6000 r-xp 00000000 08:06 101739639 /lib64/librt-2.7.90.so
2008-03-13 23:03:55.569386236 2af1435a6000-2af1437a5000 ---p 00008000 08:06 101739639 /lib64/librt-2.7.90.so
2008-03-13 23:03:55.569387114 2af1437a5000-2af1437a6000 r--p 00007000 08:06 101739639 /lib64/librt-2.7.90.so
2008-03-13 23:03:55.569388032 2af1437a6000-2af1437a7000 rw-p 00008000 08:06 101739639 /lib64/librt-2.7.90.so
2008-03-13 23:03:55.569393073 2af1437a7000-2af1437a8000 rw-p 2af1437a7000 00:00 0
2008-03-13 23:03:55.569393741 2af1437a8000-2af1437ba000 r-xp 00000000 08:06 101889822 /lib64/libresolv-2.7.90.so
2008-03-13 23:03:55.569394672 2af1437ba000-2af1439b9000 ---p 00012000 08:06 101889822 /lib64/libresolv-2.7.90.so
2008-03-13 23:03:55.569395590 2af1439b9000-2af1439ba000 r--p 00011000 08:06 101889822 /lib64/libresolv-2.7.90.so
2008-03-13 23:03:55.569405152 2af1439ba000-2af1439bb000 rw-p 00012000 08:06 101889822 /lib64/libresolv-2.7.90.so
2008-03-13 23:03:55.569406186 2af1439bb000-2af1439bf000 rw-p 2af1439bb000 00:00 0
2008-03-13 23:03:55.569406782 2af143a1b000-2af143a26000 r-xp 00000000 08:06 101889810 /lib64/libnss_files-2.7.90.so
2008-03-13 23:03:55.569407715 2af143a26000-2af143c25000 ---p 0000b000 08:06 101889810 /lib64/libnss_files-2.7.90.so
2008-03-13 23:03:55.569412290 2af143c25000-2af143c26000 r--p 0000a000 08:06 101889810 /lib64/libnss_files-2.7.90.so
2008-03-13 23:03:55.569413351 2af143c26000-2af143c27000 rw-p 0000b000 08:06 101889810 /lib64/libnss_files-2.7.90.so
2008-03-13 23:03:55.569414292 2af143c27000-2af143c29000 r-xp 00000000 08:06 105432255 /lib64/libnss_mdns4_minimal.so.2
2008-03-13 23:03:55.569418426 2af143c29000-2af143e28000 ---p 00002000 08:06 105432255 /lib64/libnss_mdns4_minimal.so.2
2008-03-13 23:03:55.569419444 2af143e28000-2af143e29000 rw-p 00001000 08:06 105432255 /lib64/libnss_mdns4_minimal.so.2
2008-03-13 23:03:55.569420393 2af143e29000-2af143e2d000 r-xp 00000000 08:06 101889808 /lib64/libnss_dns-2.7.90.so
2008-03-13 23:03:55.569429222 2af143e2d000-2af14402d000 ---p 00004000 08:06 101889808 /lib64/libnss_dns-2.7.90.so
2008-03-13 23:03:55.569430178 2af14402d000-2af14402e000 r--p 00004000 08:06 101889808 /lib64/libnss_dns-2.7.90.so
2008-03-13 23:03:55.569431096 2af14402e000-2af14402f000 rw-p 00005000 08:06 101889808 /lib64/libnss_dns-2.7.90.so
2008-03-13 23:03:55.569432027 2af1440b3000-2af1462b4000 r--p 00000000 08:07 8601139 /var/lib/tor/cached-descriptors
2008-03-13 23:03:55.569436254 2af146915000-2af146976000 rw-p 2af146915000 00:00 0
2008-03-13 23:03:55.569436932 555555554000-55555564b000 r-xp 00000000 08:08 137853895 /usr/bin/tor-0.2.1.0-r14010
2008-03-13 23:03:55.569445856 55555584a000-555555851000 rw-p 000f6000 08:08 137853895 /usr/bin/tor-0.2.1.0-r14010
2008-03-13 23:03:55.569447013 555555851000-555555852000 rw-p 555555851000 00:00 0
2008-03-13 23:03:55.569452180 5555571da000-555559d19000 rw-p 5555571da000 00:00 0 [heap]
2008-03-13 23:03:55.569453021 7fff63cab000-7fff63cc0000 rw-p 7ffffffea000 00:00 0 [stack]
2008-03-13 23:03:55.569453800 7fff63dfe000-7fff63e00000 r-xp 7fff63dfe000 00:00 0 [vdso]
2008-03-13 23:03:55.569454588 ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0 [vsyscall]

[Automatically added by flyspray2trac: Operating System: All]

Child Tickets

Change History (3)

comment:1 Changed 12 years ago by nickm

Thanks; this should be fixed in r14015.

comment:2 Changed 12 years ago by nickm

flyspray2trac: bug closed.

comment:3 Changed 7 years ago by nickm

Component: Tor RelayTor
Note: See TracTickets for help on using tickets.