[tac_plus] double free or corruption?
Daniel Schmidt
daniel.schmidt at wyo.gov
Wed Dec 18 21:48:41 UTC 2013
Nope, no core. And it was just when one guy logged in. I can't seem to
make it to happen again.
I suppose I have to admit that I am also running the afl patch.....
https://github.com/ellzey/tac_plus_AFL
Which technically has a free:
+ free(session.afl_cfg);
But, I didn't really look at it - I prefer languages that treat me like I'm
not smart enough to manage my own memory allocation.
Tacacs restarted
781
# *** glibc detected *** /usr/local/bin/tac_plus: double free or corruption
(!prev): 0x000000001c32c110 ***
======= Backtrace: =========
/lib64/libc.so.6[0x3fec67174f]
/lib64/libc.so.6(cfree+0x4b)[0x3fec675a4b]
/usr/local/bin/tac_plus[0x407996]
/usr/local/bin/tac_plus[0x403175]
/usr/local/bin/tac_plus[0x410938]
/usr/local/bin/tac_plus[0x411159]
/lib64/libc.so.6(__libc_start_main+0xf4)[0x3fec61d9c4]
/usr/local/bin/tac_plus[0x402869]
======= Memory map: ========
00400000-00419000 r-xp 00000000 fd:00 2277718
/usr/local/bin/tac_plus
00618000-00619000 rw-p 00018000 fd:00 2277718
/usr/local/bin/tac_plus
00619000-0061c000 rw-p 00619000 00:00 0
1c31f000-1c340000 rw-p 1c31f000 00:00 0
[heap]
3fec200000-3fec21c000 r-xp 00000000 fd:00 2236429
/lib64/ld-2.5.so
3fec41c000-3fec41d000 r--p 0001c000 fd:00 2236429
/lib64/ld-2.5.so
3fec41d000-3fec41e000 rw-p 0001d000 fd:00 2236429
/lib64/ld-2.5.so
3fec600000-3fec74f000 r-xp 00000000 fd:00 2236446
/lib64/libc-2.5.so
3fec74f000-3fec94f000 ---p 0014f000 fd:00 2236446
/lib64/libc-2.5.so
3fec94f000-3fec953000 r--p 0014f000 fd:00 2236446
/lib64/libc-2.5.so
3fec953000-3fec954000 rw-p 00153000 fd:00 2236446
/lib64/libc-2.5.so
3fec954000-3fec959000 rw-p 3fec954000 00:00 0
3fed200000-3fed202000 r-xp 00000000 fd:00 2236770
/lib64/libdl-2.5.so
3fed202000-3fed402000 ---p 00002000 fd:00 2236770
/lib64/libdl-2.5.so
3fed402000-3fed403000 r--p 00002000 fd:00 2236770
/lib64/libdl-2.5.so
3fed403000-3fed404000 rw-p 00003000 fd:00 2236770
/lib64/libdl-2.5.so
3fed600000-3fed616000 r-xp 00000000 fd:00 2236619
/lib64/libpthread-2.5.so
3fed616000-3fed816000 ---p 00016000 fd:00 2236619
/lib64/libpthread-2.5.so
3fed816000-3fed817000 r--p 00016000 fd:00 2236619
/lib64/libpthread-2.5.so
3fed817000-3fed818000 rw-p 00017000 fd:00 2236619
/lib64/libpthread-2.5.so
3fed818000-3fed81c000 rw-p 3fed818000 00:00 0
3ff0600000-3ff063b000 r-xp 00000000 fd:00 2236777
/lib64/libsepol.so.1
3ff063b000-3ff083b000 ---p 0003b000 fd:00 2236777
/lib64/libsepol.so.1
3ff083b000-3ff083c000 rw-p 0003b000 fd:00 2236777
/lib64/libsepol.so.1
3ff083c000-3ff0846000 rw-p 3ff083c000 00:00 0
3ff0a00000-3ff0a15000 r-xp 00000000 fd:00 2236778
/lib64/libselinux.so.1
3ff0a15000-3ff0c15000 ---p 00015000 fd:00 2236778
/lib64/libselinux.so.1
3ff0c15000-3ff0c17000 rw-p 00015000 fd:00 2236778
/lib64/libselinux.so.1
3ff0c17000-3ff0c18000 rw-p 3ff0c17000 00:00 0
3ff4c00000-3ff4c15000 r-xp 00000000 fd:00 2236769
/lib64/libnsl-2.5.so
3ff4c15000-3ff4e14000 ---p 00015000 fd:00 2236769
/lib64/libnsl-2.5.so
3ff4e14000-3ff4e15000 r--p 00014000 fd:00 2236769
/lib64/libnsl-2.5.so
3ff4e15000-3ff4e16000 rw-p 00015000 fd:00 2236769
/lib64/libnsl-2.5.so
3ff4e16000-3ff4e18000 rw-p 3ff4e16000 00:00 0
3ff5000000-3ff5008000 r-xp 00000000 fd:00 2236453
/lib64/libwrap.so.0.7.6
3ff5008000-3ff5207000 ---p 00008000 fd:00 2236453
/lib64/libwrap.so.0.7.6
3ff5207000-3ff5209000 rw-p 00007000 fd:00 2236453
/lib64/libwrap.so.0.7.6
3ff5800000-3ff5802000 r-xp 00000000 fd:00 2236779
/lib64/libcom_err.so.2.1
3ff5802000-3ff5a01000 ---p 00002000 fd:00 2236779
/lib64/libcom_err.so.2.1
3ff5a01000-3ff5a02000 rw-p 00001000 fd:00 2236779
/lib64/libcom_err.so.2.1
3ff5c00000-3ff5c02000 r-xp 00000000 fd:00 2236775
/lib64/libkeyutils-1.2.so
3ff5c02000-3ff5e01000 ---p 00002000 fd:00 2236775
/lib64/libkeyutils-1.2.so
3ff5e01000-3ff5e02000 rw-p 00001000 fd:00 2236775
/lib64/libkeyutils-1.2.so
3ff6000000-3ff6091000 r-xp 00000000 fd:00 2485683
/usr/lib64/libkrb5.so.3.3
3ff6091000-3ff6291000 ---p 00091000 fd:00 2485683
/usr/lib64/libkrb5.so.3.3
3ff6291000-3ff6295000 rw-p 00091000 fd:00 2485683
/usr/lib64/libkrb5.so.3.3
3ff6400000-3ff6424000 r-xp 00000000 fd:00 2485682
/usr/lib64/libk5crypto.so.3.1
3ff6424000-3ff6623000 ---p 00024000 fd:00 2485682
/usr/lib64/libk5crypto.so.3.1
3ff6623000-3ff6625000 rw-p 00023000 fd:00 2485682
/usr/lib64/libk5crypto.so.3.1
3ff6800000-3ff6808000 r-xp 00000000 fd:00 2484955
/usr/lib64/libkrb5support.so.0.1
3ff6808000-3ff6a07000 ---p 00008000 fd:00 2484955
/usr/lib64/libkrb5support.so.0.1
3ff6a07000-3ff6a08000 rw-p 00007000 fd:00 2484955
/usr/lib64/libkrb5support.so.0.1
3ff7800000-3ff7817000 r-xp 00000000 fd:00 2236790
/lib64/libaudit.so.0.0.0
3ff7817000-3ff7a16000 ---p 00017000 fd:00 2236790
/lib64/libaudit.so.0.0.0
3ff7a16000-3ff7a18000 rw-p 00016000 fd:00 2236790
/lib64/libaudit.so.0.0.0
3ffa000000-3ffa00b000 r-xp 00000000 fd:00 2236791
/lib64/libpam.so.0.81.5
3ffa00b000-3ffa20a000 ---p 0000b000 fd:00 2236791
/lib64/libpam.so.0.81.5
3ffa20a000-3ffa20b000 rw-p 0000a000 fd:00 2236791
/lib64/libpam.so.0.81.5
3ffa400000-3ffa409000 r-xp 00000000 fd:00 2236774
/lib64/libcrypt-2.5.so
3ffa409000-3ffa608000 ---p 00009000 fd:00 2236774
/lib64/libcrypt-2.5.so
3ffa608000-3ffa609000 r--p 00008000 fd:00 2236774
/lib64/libcrypt-2.5.so
3ffa609000-3ffa60a000 rw-p 00009000 fd:00 2236774
/lib64/libcrypt-2.5.so
3ffa60a000-3ffa638000 rw-p 3ffa60a000 00:00 0
3ffac00000-3ffac0d000 r-xp 00000000 fd:00 2236789
/lib64/libgcc_s-4.1.2-20080825.so.1
3ffac0d000-3ffae0d000 ---p 0000d000 fd:00 2236789
/lib64/libgcc_s-4.1.2-20080825.so.1
3ffae0d000-3ffae0e000 rw-p 0000d000 fd:00 2236789
/lib64/libgcc_s-4.1.2-20080825.so.1
2b6975ad0000-2b6975ad2000 rw-p 2b6975ad0000 00:00 0
2b6975ad2000-2b6975ad5000 rw-s 00000000 00:09 55443461
/SYSV4100440c (deleted)
2b6975ad5000-2b6975ad8000 rw-s 00000000 00:09 55443461
/SYSV4100440c (deleted)
2b6975ae8000-2b6975aec000 r-xp 00000000 fd:00 2277706
/usr/local/lib/libtacacs.so.1.0.0
2b6975aec000-2b6975ceb000 ---p 00004000 fd:00 2277706
/usr/local/lib/libtacacs.so.1.0.0
2b6975ceb000-2b6975cec000 rw-p 00003000 fd:00 2277706
/usr/local/lib/libtacacs.so.1.0.0
2b6975cec000-2b6975cf0000 rw-p 2b6975cec000 00:00 0
2b697630e000-2b6976326000 r-xp 00000000 fd:00 2236678
/lib64/security/pam_krb5.so
2b6976326000-2b6976525000 ---p 00018000 fd:00 2236678
/lib64/security/pam_krb5.so
2b6976525000-2b6976526000 rw-p 00017000 fd:00 2236678
/lib64/security/pam_krb5.so
2b697653c000-2b6976556000 r-xp 00000000 fd:00 2485514
/usr/lib64/libkrb4.so.2.0
2b6976556000-2b6976755000 ---p 0001a000 fd:00 2485514
/usr/lib64/libkrb4.so.2.0
2b6976755000-2b6976757000 rw-p 00019000 fd:00 2485514
/usr/lib64/libkrb4.so.2.0
2b6976757000-2b697675c000 rw-p 2b6976757000 00:00 0
2b697675c000-2b697675f000 r-xp 00000000 fd:00 2485286
/usr/lib64/libdes425.so.3.0
2b697675f000-2b697695e000 ---p 00003000 fd:00 2485286
/usr/lib64/libdes425.so.3.0
2b697695e000-2b697695f000 rw-p 00002000 fd:00 2485286
/usr/lib64/libdes425.so.3.0
2b697695f000-2b6976970000 r-xp 00000000 fd:00 2236776
/lib64/libresolv-2.5.so
2b6976970000-2b6976b70000 ---p 00011000 fd:00 2236776
/lib64/libresolv-2.5.so
2b6976b70000-2b6976b71000 r--p 00011000 fd:00 2236776
/lib64/libresolv-2.5.so
2b6976b71000-2b6976b72000 rw-p 00012000 fd:00 2236776
/lib64/libresolv-2.5.so
2b6976b72000-2b6976b74000 rw-p 2b6976b72000 00:00 0
2b6977784000-2b697778e000 r-xp 00000000 fd:00 2236689
/lib64/libnss_files-2.5.so
2b697778e000-2b697798d000 ---p 0000a000 fd:00 2236689
/lib64/libnss_files-2.5.so
2b697798d000-2b697798e000 r--p 00009000 fd:00 2236689
/lib64/libnss_files-2.5.so
2b697798e000-2b697798f000 rw-p 0000a000 fd:00 2236689
/lib64/libnss_files-2.5.so
7fff0ed62000-7fff0ed7f000 rw-p 7ffffffe1000 00:00 0
[stack]
7fff0edfd000-7fff0ee00000 r-xp 7fff0edfd000 00:00 0
[vdso]
ffffffffff600000-ffffffffffe00000 ---p 00000000 00:00 0
[vsyscall]
*** glibc detected *** /usr/local/bin/tac_plus: double free or corruption
(!prev): 0x000000001c32c110 ***
======= Backtrace: =========
/lib64/libc.so.6[0x3fec67174f]
/lib64/libc.so.6(cfree+0x4b)[0x3fec675a4b]
/usr/local/bin/tac_plus[0x407996]
/usr/local/bin/tac_plus[0x403175]
/usr/local/bin/tac_plus[0x410938]
/usr/local/bin/tac_plus[0x411159]
/lib64/libc.so.6(__libc_start_main+0xf4)[0x3fec61d9c4]
/usr/local/bin/tac_plus[0x402869]
======= Memory map: ========
00400000-00419000 r-xp 00000000 fd:00 2277718
/usr/local/bin/tac_plus
00618000-00619000 rw-p 00018000 fd:00 2277718
/usr/local/bin/tac_plus
00619000-0061c000 rw-p 00619000 00:00 0
1c31f000-1c340000 rw-p 1c31f000 00:00 0
[heap]
3fec200000-3fec21c000 r-xp 00000000 fd:00 2236429
/lib64/ld-2.5.so
3fec41c000-3fec41d000 r--p 0001c000 fd:00 2236429
/lib64/ld-2.5.so
3fec41d000-3fec41e000 rw-p 0001d000 fd:00 2236429
/lib64/ld-2.5.so
3fec600000-3fec74f000 r-xp 00000000 fd:00 2236446
/lib64/libc-2.5.so
3fec74f000-3fec94f000 ---p 0014f000 fd:00 2236446
/lib64/libc-2.5.so
3fec94f000-3fec953000 r--p 0014f000 fd:00 2236446
/lib64/libc-2.5.so
3fec953000-3fec954000 rw-p 00153000 fd:00 2236446
/lib64/libc-2.5.so
3fec954000-3fec959000 rw-p 3fec954000 00:00 0
3fed200000-3fed202000 r-xp 00000000 fd:00 2236770
/lib64/libdl-2.5.so
3fed202000-3fed402000 ---p 00002000 fd:00 2236770
/lib64/libdl-2.5.so
3fed402000-3fed403000 r--p 00002000 fd:00 2236770
/lib64/libdl-2.5.so
3fed403000-3fed404000 rw-p 00003000 fd:00 2236770
/lib64/libdl-2.5.so
3fed600000-3fed616000 r-xp 00000000 fd:00 2236619
/lib64/libpthread-2.5.so
3fed616000-3fed816000 ---p 00016000 fd:00 2236619
/lib64/libpthread-2.5.so
3fed816000-3fed817000 r--p 00016000 fd:00 2236619
/lib64/libpthread-2.5.so
3fed817000-3fed818000 rw-p 00017000 fd:00 2236619
/lib64/libpthread-2.5.so
3fed818000-3fed81c000 rw-p 3fed818000 00:00 0
3ff0600000-3ff063b000 r-xp 00000000 fd:00 2236777
/lib64/libsepol.so.1
3ff063b000-3ff083b000 ---p 0003b000 fd:00 2236777
/lib64/libsepol.so.1
3ff083b000-3ff083c000 rw-p 0003b000 fd:00 2236777
/lib64/libsepol.so.1
3ff083c000-3ff0846000 rw-p 3ff083c000 00:00 0
3ff0a00000-3ff0a15000 r-xp 00000000 fd:00 2236778
/lib64/libselinux.so.1
3ff0a15000-3ff0c15000 ---p 00015000 fd:00 2236778
/lib64/libselinux.so.1
3ff0c15000-3ff0c17000 rw-p 00015000 fd:00 2236778
/lib64/libselinux.so.1
3ff0c17000-3ff0c18000 rw-p 3ff0c17000 00:00 0
3ff4c00000-3ff4c15000 r-xp 00000000 fd:00 2236769
/lib64/libnsl-2.5.so
3ff4c15000-3ff4e14000 ---p 00015000 fd:00 2236769
/lib64/libnsl-2.5.so
3ff4e14000-3ff4e15000 r--p 00014000 fd:00 2236769
/lib64/libnsl-2.5.so
3ff4e15000-3ff4e16000 rw-p 00015000 fd:00 2236769
/lib64/libnsl-2.5.so
3ff4e16000-3ff4e18000 rw-p 3ff4e16000 00:00 0
3ff5000000-3ff5008000 r-xp 00000000 fd:00 2236453
/lib64/libwrap.so.0.7.6
3ff5008000-3ff5207000 ---p 00008000 fd:00 2236453
/lib64/libwrap.so.0.7.6
3ff5207000-3ff5209000 rw-p 00007000 fd:00 2236453
/lib64/libwrap.so.0.7.6
3ff5800000-3ff5802000 r-xp 00000000 fd:00 2236779
/lib64/libcom_err.so.2.1
3ff5802000-3ff5a01000 ---p 00002000 fd:00 2236779
/lib64/libcom_err.so.2.1
3ff5a01000-3ff5a02000 rw-p 00001000 fd:00 2236779
/lib64/libcom_err.so.2.1
3ff5c00000-3ff5c02000 r-xp 00000000 fd:00 2236775
/lib64/libkeyutils-1.2.so
3ff5c02000-3ff5e01000 ---p 00002000 fd:00 2236775
/lib64/libkeyutils-1.2.so
3ff5e01000-3ff5e02000 rw-p 00001000 fd:00 2236775
/lib64/libkeyutils-1.2.so
3ff6000000-3ff6091000 r-xp 00000000 fd:00 2485683
/usr/lib64/libkrb5.so.3.3
3ff6091000-3ff6291000 ---p 00091000 fd:00 2485683
/usr/lib64/libkrb5.so.3.3
3ff6291000-3ff6295000 rw-p 00091000 fd:00 2485683
/usr/lib64/libkrb5.so.3.3
3ff6400000-3ff6424000 r-xp 00000000 fd:00 2485682
/usr/lib64/libk5crypto.so.3.1
3ff6424000-3ff6623000 ---p 00024000 fd:00 2485682
/usr/lib64/libk5crypto.so.3.1
3ff6623000-3ff6625000 rw-p 00023000 fd:00 2485682
/usr/lib64/libk5crypto.so.3.1
3ff6800000-3ff6808000 r-xp 00000000 fd:00 2484955
/usr/lib64/libkrb5support.so.0.1
3ff6808000-3ff6a07000 ---p 00008000 fd:00 2484955
/usr/lib64/libkrb5support.so.0.1
3ff6a07000-3ff6a08000 rw-p 00007000 fd:00 2484955
/usr/lib64/libkrb5support.so.0.1
3ff7800000-3ff7817000 r-xp 00000000 fd:00 2236790
/lib64/libaudit.so.0.0.0
3ff7817000-3ff7a16000 ---p 00017000 fd:00 2236790
/lib64/libaudit.so.0.0.0
3ff7a16000-3ff7a18000 rw-p 00016000 fd:00 2236790
/lib64/libaudit.so.0.0.0
3ffa000000-3ffa00b000 r-xp 00000000 fd:00 2236791
/lib64/libpam.so.0.81.5
3ffa00b000-3ffa20a000 ---p 0000b000 fd:00 2236791
/lib64/libpam.so.0.81.5
3ffa20a000-3ffa20b000 rw-p 0000a000 fd:00 2236791
/lib64/libpam.so.0.81.5
3ffa400000-3ffa409000 r-xp 00000000 fd:00 2236774
/lib64/libcrypt-2.5.so
3ffa409000-3ffa608000 ---p 00009000 fd:00 2236774
/lib64/libcrypt-2.5.so
3ffa608000-3ffa609000 r--p 00008000 fd:00 2236774
/lib64/libcrypt-2.5.so
3ffa609000-3ffa60a000 rw-p 00009000 fd:00 2236774
/lib64/libcrypt-2.5.so
3ffa60a000-3ffa638000 rw-p 3ffa60a000 00:00 0
3ffac00000-3ffac0d000 r-xp 00000000 fd:00 2236789
/lib64/libgcc_s-4.1.2-20080825.so.1
3ffac0d000-3ffae0d000 ---p 0000d000 fd:00 2236789
/lib64/libgcc_s-4.1.2-20080825.so.1
3ffae0d000-3ffae0e000 rw-p 0000d000 fd:00 2236789
/lib64/libgcc_s-4.1.2-20080825.so.1
2b6975ad0000-2b6975ad2000 rw-p 2b6975ad0000 00:00 0
2b6975ad2000-2b6975ad5000 rw-s 00000000 00:09 55443461
/SYSV4100440c (deleted)
2b6975ad5000-2b6975ad8000 rw-s 00000000 00:09 55443461
/SYSV4100440c (deleted)
2b6975ae8000-2b6975aec000 r-xp 00000000 fd:00 2277706
/usr/local/lib/libtacacs.so.1.0.0
2b6975aec000-2b6975ceb000 ---p 00004000 fd:00 2277706
/usr/local/lib/libtacacs.so.1.0.0
2b6975ceb000-2b6975cec000 rw-p 00003000 fd:00 2277706
/usr/local/lib/libtacacs.so.1.0.0
2b6975cec000-2b6975cf0000 rw-p 2b6975cec000 00:00 0
2b697630e000-2b6976326000 r-xp 00000000 fd:00 2236678
/lib64/security/pam_krb5.so
2b6976326000-2b6976525000 ---p 00018000 fd:00 2236678
/lib64/security/pam_krb5.so
2b6976525000-2b6976526000 rw-p 00017000 fd:00 2236678
/lib64/security/pam_krb5.so
2b697653c000-2b6976556000 r-xp 00000000 fd:00 2485514
/usr/lib64/libkrb4.so.2.0
2b6976556000-2b6976755000 ---p 0001a000 fd:00 2485514
/usr/lib64/libkrb4.so.2.0
2b6976755000-2b6976757000 rw-p 00019000 fd:00 2485514
/usr/lib64/libkrb4.so.2.0
2b6976757000-2b697675c000 rw-p 2b6976757000 00:00 0
2b697675c000-2b697675f000 r-xp 00000000 fd:00 2485286
/usr/lib64/libdes425.so.3.0
2b697675f000-2b697695e000 ---p 00003000 fd:00 2485286
/usr/lib64/libdes425.so.3.0
2b697695e000-2b697695f000 rw-p 00002000 fd:00 2485286
/usr/lib64/libdes425.so.3.0
2b697695f000-2b6976970000 r-xp 00000000 fd:00 2236776
/lib64/libresolv-2.5.so
2b6976970000-2b6976b70000 ---p 00011000 fd:00 2236776
/lib64/libresolv-2.5.so
2b6976b70000-2b6976b71000 r--p 00011000 fd:00 2236776
/lib64/libresolv-2.5.so
2b6976b71000-2b6976b72000 rw-p 00012000 fd:00 2236776
/lib64/libresolv-2.5.so
2b6976b72000-2b6976b74000 rw-p 2b6976b72000 00:00 0
2b6977784000-2b697778e000 r-xp 00000000 fd:00 2236689
/lib64/libnss_files-2.5.so
2b697778e000-2b697798d000 ---p 0000a000 fd:00 2236689
/lib64/libnss_files-2.5.so
2b697798d000-2b697798e000 r--p 00009000 fd:00 2236689
/lib64/libnss_files-2.5.so
2b697798e000-2b697798f000 rw-p 0000a000 fd:00 2236689
/lib64/libnss_files-2.5.so
7fff0ed62000-7fff0ed7f000 rw-p 7ffffffe1000 00:00 0
[stack]
7fff0edfd000-7fff0ee00000 r-xp 7fff0edfd000 00:00 0
[vdso]
ffffffffff600000-ffffffffffe00000 ---p 00000000 00:00 0
[vsyscall]
#
On Tue, Dec 17, 2013 at 9:14 PM, heasley <heas at shrubbery.net> wrote:
> Tue, Dec 17, 2013 at 02:43:47PM -0700, Daniel Schmidt:
> > *** glibc detected *** /usr/local/bin/tac_plus: double free or corruption
> >
> > Well, THAT's never happened before. Hum...
>
> did it dump a core for me to analyze?
> _______________________________________________
> tac_plus mailing list
> tac_plus at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/tac_plus
>
E-Mail to and from me, in connection with the transaction
of public business, is subject to the Wyoming Public Records
Act and may be disclosed to third parties.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/tac_plus/attachments/20131218/9c090769/attachment.html>
More information about the tac_plus
mailing list