Attachment 1474 Details for Bug 4367 – GDB trace

GDB trace

BUG.pstree (text/plain), 4.30 KB, created by Thierry Vignaud on 2012-01-31 19:03:10 CET

(hide)

Description:

Filename:

MIME Type:

Creator: Thierry Vignaud

Created: 2012-01-31 19:03:10 CET

Size: 4.30 KB

patch

obsolete

>(gdb) run
>Starting program: /usr/bin/pstree 
>*** buffer overflow detected ***: /usr/bin/pstree terminated
>======= Backtrace: =========
>/lib64/libc.so.6(__fortify_fail+0x37)[0x7ffff7b43927]
>/lib64/libc.so.6(+0xee910)[0x7ffff7b41910]
>/usr/bin/pstree[0x402e22]
>/usr/bin/pstree[0x402f5a]
>/usr/bin/pstree[0x401e1d]
>/lib64/libc.so.6(__libc_start_main+0xed)[0x7ffff7a7432d]
>/usr/bin/pstree[0x402025]
>======= Memory map: ========
>00400000-00405000 r-xp 00000000 08:11 136828                             /usr/bin/pstree
>00604000-00605000 r--p 00004000 08:11 136828                             /usr/bin/pstree
>00605000-00606000 rw-p 00005000 08:11 136828                             /usr/bin/pstree
>00606000-00627000 rw-p 00000000 00:00 0                                  [heap]
>3ce2200000-3ce2215000 r-xp 00000000 08:11 653831                         /lib64/libgcc_s-4.6.2.so.1
>3ce2215000-3ce2414000 ---p 00015000 08:11 653831                         /lib64/libgcc_s-4.6.2.so.1
>3ce2414000-3ce2415000 rw-p 00014000 08:11 653831                         /lib64/libgcc_s-4.6.2.so.1
>3ceca00000-3ceca50000 r-xp 00000000 08:11 653837                         /lib64/libncurses.so.5.9
>3ceca50000-3cecc4f000 ---p 00050000 08:11 653837                         /lib64/libncurses.so.5.9
>3cecc4f000-3cecc53000 r--p 0004f000 08:11 653837                         /lib64/libncurses.so.5.9
>3cecc53000-3cecc54000 rw-p 00053000 08:11 653837                         /lib64/libncurses.so.5.9
>3cecc54000-3cecc55000 rw-p 00000000 00:00 0 
>7ffff335a000-7ffff784f000 r--p 00000000 08:11 135808                     /usr/share/locale/locale-archive
>7ffff784f000-7ffff7851000 r-xp 00000000 08:11 653071                     /lib64/libdl-2.14.1.so
>7ffff7851000-7ffff7a51000 ---p 00002000 08:11 653071                     /lib64/libdl-2.14.1.so
>7ffff7a51000-7ffff7a52000 r--p 00002000 08:11 653071                     /lib64/libdl-2.14.1.so
>7ffff7a52000-7ffff7a53000 rw-p 00003000 08:11 653071                     /lib64/libdl-2.14.1.so
>7ffff7a53000-7ffff7bd5000 r-xp 00000000 08:11 653061                     /lib64/libc-2.14.1.so
>7ffff7bd5000-7ffff7dd5000 ---p 00182000 08:11 653061                     /lib64/libc-2.14.1.so
>7ffff7dd5000-7ffff7dd9000 r--p 00182000 08:11 653061                     /lib64/libc-2.14.1.so
>7ffff7dd9000-7ffff7dda000 rw-p 00186000 08:11 653061                     /lib64/libc-2.14.1.so
>7ffff7dda000-7ffff7ddf000 rw-p 00000000 00:00 0 
>7ffff7ddf000-7ffff7dfd000 r-xp 00000000 08:11 653043                     /lib64/ld-2.14.1.so
>7ffff7fd3000-7ffff7fd6000 rw-p 00000000 00:00 0 
>7ffff7ff1000-7ffff7ff2000 rw-p 00000000 00:00 0 
>7ffff7ff2000-7ffff7ff9000 r--s 00000000 08:11 145168                     /usr/lib64/gconv/gconv-modules.cache
>7ffff7ff9000-7ffff7ffb000 rw-p 00000000 00:00 0 
>7ffff7ffb000-7ffff7ffc000 r-xp 00000000 00:00 0                          [vdso]
>7ffff7ffc000-7ffff7ffd000 r--p 0001d000 08:11 653043                     /lib64/ld-2.14.1.so
>7ffff7ffd000-7ffff7ffe000 rw-p 0001e000 08:11 653043                     /lib64/ld-2.14.1.so
>7ffff7ffe000-7ffff7fff000 rw-p 00000000 00:00 0 
>7ffffffde000-7ffffffff000 rw-p 00000000 00:00 0                          [stack]
>ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0                  [vsyscall]
>
>Program received signal SIGABRT, Aborted.
>0x00007ffff7a87245 in __GI_raise (sig=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
>64        return INLINE_SYSCALL (tgkill, 3, pid, selftid, sig);
>(gdb) bt
>87245 in __GI_raise (sig=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
>#1  0x00007ffff7a887cb in __GI_abort () at abort.c:93
>#2  0x00007ffff7ac05be in __libc_message (do_abort=2, fmt=0x7ffff7ba173c "*** %s ***: %s terminated\n") at ../sysdeps/unix/sysv/linux/libc_fatal.c:198
>#3  0x00007ffff7b43927 in __GI___fortify_fail (msg=0x7ffff7ba16e2 "buffer overflow detected") at fortify_fail.c:32
>#4  0x00007ffff7b41910 in __GI___chk_fail () at chk_fail.c:29
>#5  0x0000000000402e22 in strcpy (__src=0x610ff0 "{gdm-simple-slav}", __dest=0x611010 "{gdm-simple-slav}") at /usr/include/bits/string3.h:105
>#6  new_proc (comm=0x610ff0 "{gdm-simple-slav}", pid=3126, uid=0) at pstree.c:267
>#7  0x0000000000402f5a in add_proc (comm=<optimized out>, pid=3126, ppid=3122, uid=0, args=0x0, size=0, isthread=1 '\001') at pstree.c:352
>#8  0x0000000000401e1d in read_proc () at pstree.c:702
>#9  main (argc=<optimized out>, argv=<optimized out>) at pstree.c:990
>

(gdb) run
Starting program: /usr/bin/pstree 
*** buffer overflow detected ***: /usr/bin/pstree terminated
======= Backtrace: =========
/lib64/libc.so.6(__fortify_fail+0x37)[0x7ffff7b43927]
/lib64/libc.so.6(+0xee910)[0x7ffff7b41910]
/usr/bin/pstree[0x402e22]
/usr/bin/pstree[0x402f5a]
/usr/bin/pstree[0x401e1d]
/lib64/libc.so.6(__libc_start_main+0xed)[0x7ffff7a7432d]
/usr/bin/pstree[0x402025]
======= Memory map: ========
00400000-00405000 r-xp 00000000 08:11 136828                             /usr/bin/pstree
00604000-00605000 r--p 00004000 08:11 136828                             /usr/bin/pstree
00605000-00606000 rw-p 00005000 08:11 136828                             /usr/bin/pstree
00606000-00627000 rw-p 00000000 00:00 0                                  [heap]
3ce2200000-3ce2215000 r-xp 00000000 08:11 653831                         /lib64/libgcc_s-4.6.2.so.1
3ce2215000-3ce2414000 ---p 00015000 08:11 653831                         /lib64/libgcc_s-4.6.2.so.1
3ce2414000-3ce2415000 rw-p 00014000 08:11 653831                         /lib64/libgcc_s-4.6.2.so.1
3ceca00000-3ceca50000 r-xp 00000000 08:11 653837                         /lib64/libncurses.so.5.9
3ceca50000-3cecc4f000 ---p 00050000 08:11 653837                         /lib64/libncurses.so.5.9
3cecc4f000-3cecc53000 r--p 0004f000 08:11 653837                         /lib64/libncurses.so.5.9
3cecc53000-3cecc54000 rw-p 00053000 08:11 653837                         /lib64/libncurses.so.5.9
3cecc54000-3cecc55000 rw-p 00000000 00:00 0 
7ffff335a000-7ffff784f000 r--p 00000000 08:11 135808                     /usr/share/locale/locale-archive
7ffff784f000-7ffff7851000 r-xp 00000000 08:11 653071                     /lib64/libdl-2.14.1.so
7ffff7851000-7ffff7a51000 ---p 00002000 08:11 653071                     /lib64/libdl-2.14.1.so
7ffff7a51000-7ffff7a52000 r--p 00002000 08:11 653071                     /lib64/libdl-2.14.1.so
7ffff7a52000-7ffff7a53000 rw-p 00003000 08:11 653071                     /lib64/libdl-2.14.1.so
7ffff7a53000-7ffff7bd5000 r-xp 00000000 08:11 653061                     /lib64/libc-2.14.1.so
7ffff7bd5000-7ffff7dd5000 ---p 00182000 08:11 653061                     /lib64/libc-2.14.1.so
7ffff7dd5000-7ffff7dd9000 r--p 00182000 08:11 653061                     /lib64/libc-2.14.1.so
7ffff7dd9000-7ffff7dda000 rw-p 00186000 08:11 653061                     /lib64/libc-2.14.1.so
7ffff7dda000-7ffff7ddf000 rw-p 00000000 00:00 0 
7ffff7ddf000-7ffff7dfd000 r-xp 00000000 08:11 653043                     /lib64/ld-2.14.1.so
7ffff7fd3000-7ffff7fd6000 rw-p 00000000 00:00 0 
7ffff7ff1000-7ffff7ff2000 rw-p 00000000 00:00 0 
7ffff7ff2000-7ffff7ff9000 r--s 00000000 08:11 145168                     /usr/lib64/gconv/gconv-modules.cache
7ffff7ff9000-7ffff7ffb000 rw-p 00000000 00:00 0 
7ffff7ffb000-7ffff7ffc000 r-xp 00000000 00:00 0                          [vdso]
7ffff7ffc000-7ffff7ffd000 r--p 0001d000 08:11 653043                     /lib64/ld-2.14.1.so
7ffff7ffd000-7ffff7ffe000 rw-p 0001e000 08:11 653043                     /lib64/ld-2.14.1.so
7ffff7ffe000-7ffff7fff000 rw-p 00000000 00:00 0 
7ffffffde000-7ffffffff000 rw-p 00000000 00:00 0                          [stack]
ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0                  [vsyscall]

Program received signal SIGABRT, Aborted.
0x00007ffff7a87245 in __GI_raise (sig=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
64        return INLINE_SYSCALL (tgkill, 3, pid, selftid, sig);
(gdb) bt
87245 in __GI_raise (sig=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
#1  0x00007ffff7a887cb in __GI_abort () at abort.c:93
#2  0x00007ffff7ac05be in __libc_message (do_abort=2, fmt=0x7ffff7ba173c "*** %s ***: %s terminated\n") at ../sysdeps/unix/sysv/linux/libc_fatal.c:198
#3  0x00007ffff7b43927 in __GI___fortify_fail (msg=0x7ffff7ba16e2 "buffer overflow detected") at fortify_fail.c:32
#4  0x00007ffff7b41910 in __GI___chk_fail () at chk_fail.c:29
#5  0x0000000000402e22 in strcpy (__src=0x610ff0 "{gdm-simple-slav}", __dest=0x611010 "{gdm-simple-slav}") at /usr/include/bits/string3.h:105
#6  new_proc (comm=0x610ff0 "{gdm-simple-slav}", pid=3126, uid=0) at pstree.c:267
#7  0x0000000000402f5a in add_proc (comm=<optimized out>, pid=3126, ppid=3122, uid=0, args=0x0, size=0, isthread=1 '\001') at pstree.c:352
#8  0x0000000000401e1d in read_proc () at pstree.c:702
#9  main (argc=<optimized out>, argv=<optimized out>) at pstree.c:990

Actions: View

Attachments on bug 4367: 1474