From debbugs-submit-bounces@debbugs.gnu.org Wed Aug 03 19:31:34 2016 Received: (at 24138) by debbugs.gnu.org; 3 Aug 2016 23:31:34 +0000 Received: from localhost ([127.0.0.1]:55035 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1bV5dO-0003zV-Jm for submit@debbugs.gnu.org; Wed, 03 Aug 2016 19:31:34 -0400 Received: from mx2.suse.de ([195.135.220.15]:46016) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1bV5dM-0003zL-Mu for 24138@debbugs.gnu.org; Wed, 03 Aug 2016 19:31:33 -0400 X-Virus-Scanned: by amavisd-new at test-mx.suse.de Received: from relay1.suse.de (charybdis-ext.suse.de [195.135.220.254]) by mx2.suse.de (Postfix) with ESMTP id B213BAAF1; Wed, 3 Aug 2016 23:31:30 +0000 (UTC) Date: Thu, 4 Aug 2016 01:31:30 +0200 From: =?utf-8?B?VG9tw6HFoSDEjGVjaA==?= To: Ludovic =?iso-8859-1?Q?Court=E8s?= Subject: Re: bug#24138: SIGSEGV of useradd (from shadow package) Message-ID: <20160803233130.keci3q5l4llnfxta@crashnator.suse.cz> References: <20160803065906.tgckq77l7k6gqa4w@crashnator.suse.cz> <87h9b123m4.fsf@gnu.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="yb64olsjv2qgyqvz" Content-Disposition: inline In-Reply-To: <87h9b123m4.fsf@gnu.org> User-Agent: Mutt/1.6.1-neo (2016-06-11) X-Spam-Score: -3.5 (---) X-Debbugs-Envelope-To: 24138 Cc: 24138@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.5 (---) --yb64olsjv2qgyqvz Content-Type: text/plain; charset=utf-8; format=flowed Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Aug 03, 2016 at 06:56:19PM +0200, Ludovic Court=C3=A8s wrote: >Hello! > >Tom=C3=A1=C5=A1 =C4=8Cech skribis: > >> It seems to be easy to crash useradd (from shadow package). > >Is it on GuixSD? Yes. \o/ >> from strace: >> >> read(3, "account required pam_deny.so \nau"..., 4096) =3D 223 >> open("/gnu/store/2xmwkq2ycwk89xlxnvib5wnjaacfy0rg-linux-pam-1.2.1/lib/se= curity/pam_deny.so", O_RDONLY|O_CLOEXEC) =3D 5 >> read(5, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\340\6\0\0\0\0\0\= 0"..., 832) =3D 832 >> fstat(5, {st_mode=3DS_IFREG|0555, st_size=3D6728, ...}) =3D 0 >> mmap(NULL, 2100200, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 5, 0= ) =3D 0x7fb8b447c000 >> mprotect(0x7fb8b447d000, 2093056, PROT_NONE) =3D 0 >> mmap(0x7fb8b467c000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|M= AP_DENYWRITE, 5, 0) =3D 0x7fb8b467c000 >> close(5) =3D 0 >> --- SIGSEGV {si_signo=3DSIGSEGV, si_code=3DSEGV_MAPERR, si_addr=3D0x7fb8= b3d1bda8} --- > >Could you check in the =E2=80=98strace=E2=80=99 output whether PAM modules= build with >another libc are being loaded? It doesn't seem to be that case: # grep linux-pam ~/useradd.strace | grep -v ENOENT 19555 open("/gnu/store/2xmwkq2ycwk89xlxnvib5wnjaacfy0rg-linux-pam-1.2.1/lib= /libpam_misc.so.0", O_RDONLY|O_CLOEXEC) =3D 3 19555 open("/gnu/store/2xmwkq2ycwk89xlxnvib5wnjaacfy0rg-linux-pam-1.2.1/lib= /libpam.so.0", O_RDONLY|O_CLOEXEC) =3D 3 19555 open("/gnu/store/2xmwkq2ycwk89xlxnvib5wnjaacfy0rg-linux-pam-1.2.1/lib= /security/pam_unix.so", O_RDONLY|O_CLOEXEC) =3D 4 19555 open("/gnu/store/2xmwkq2ycwk89xlxnvib5wnjaacfy0rg-linux-pam-1.2.1/lib= /security/pam_rootok.so", O_RDONLY|O_CLOEXEC) =3D 4 19555 stat("/gnu/store/m4xna3zq2il5an61wxbmfv82ndvz70f6-linux-pam-1.2.1/lib= ", {st_mode=3DS_IFDIR|0555, st_size=3D4096, ...}) =3D 0 19555 open("/gnu/store/2xmwkq2ycwk89xlxnvib5wnjaacfy0rg-linux-pam-1.2.1/lib= /security/pam_deny.so", O_RDONLY|O_CLOEXEC) =3D 5 On the other hand it seems to load part of the libraries from 2.22, part from 2.23 and that is not healthy. # grep glibc ~/useradd.strace | grep -v ENOENT 19555 open("/gnu/store/8m00x5x8ykmar27s9248cmhnkdb2n54a-glibc-2.22/lib/libd= l.so.2", O_RDONLY|O_CLOEXEC) =3D 3 19555 open("/gnu/store/8m00x5x8ykmar27s9248cmhnkdb2n54a-glibc-2.22/lib/libc= =2Eso.6", O_RDONLY|O_CLOEXEC) =3D 3 19555 open("/gnu/store/8m00x5x8ykmar27s9248cmhnkdb2n54a-glibc-2.22/share/lo= cale/locale.alias", O_RDONLY|O_CLOEXEC) =3D 3 19555 open("/gnu/store/8m00x5x8ykmar27s9248cmhnkdb2n54a-glibc-2.22/lib/libn= ss_compat.so.2", O_RDONLY|O_CLOEXEC) =3D 3 19555 open("/gnu/store/8m00x5x8ykmar27s9248cmhnkdb2n54a-glibc-2.22/lib/libn= sl.so.1", O_RDONLY|O_CLOEXEC) =3D 3 19555 open("/gnu/store/8m00x5x8ykmar27s9248cmhnkdb2n54a-glibc-2.22/lib/libn= ss_nis.so.2", O_RDONLY|O_CLOEXEC) =3D 3 19555 open("/gnu/store/8m00x5x8ykmar27s9248cmhnkdb2n54a-glibc-2.22/lib/libn= ss_files.so.2", O_RDONLY|O_CLOEXEC) =3D 3 19555 open("/gnu/store/8m00x5x8ykmar27s9248cmhnkdb2n54a-glibc-2.22/lib/libc= rypt.so.1", O_RDONLY|O_CLOEXEC) =3D 4 19555 stat("/gnu/store/m9vxvhdj691bq1f85lpflvnhcvrdilih-glibc-2.23/lib", {s= t_mode=3DS_IFDIR|0555, st_size=3D4096, ...}) =3D 0 19555 open("/gnu/store/m9vxvhdj691bq1f85lpflvnhcvrdilih-glibc-2.23/lib/libm= =2Eso.6", O_RDONLY|O_CLOEXEC) =3D 4 19555 open("/gnu/store/m9vxvhdj691bq1f85lpflvnhcvrdilih-glibc-2.23/lib/libr= t.so.1", O_RDONLY|O_CLOEXEC) =3D 4 19555 open("/gnu/store/m9vxvhdj691bq1f85lpflvnhcvrdilih-glibc-2.23/lib/libp= thread.so.0", O_RDONLY|O_CLOEXEC) =3D 4 It seems to be more serious than I thought: # login Neopr=C3=A1vn=C4=9Bn=C3=BD p=C5=99=C3=ADstup do pam=C4=9Bti (SIGSEGV) (core= dumped [obraz pam=C4=9Bti ulo=C5=BEen]) S_W --yb64olsjv2qgyqvz Content-Type: application/pgp-signature; name="signature.asc" Content-Description: Digital signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJXon7LAAoJEEoj40+gM0NtjZQP/jS3H8u5RlDnrf7CnnViDmPu ikVlnQpkGpRiMHgrHG1DbyxGXGwXxN2mTkkk6fJsNlbuxslP71FLEyvOWRaUhlYs S3Rg9LB1+UmXyp2Ko/PrHgdkfPFCNplzJBBA8aRrzwr1imVsIcUTpudjVwIXTC1H YTyWW4snKLBsHTOo9/ZJF6zlBPEVnsYAEGwnI2j7aLgwE770pl7djuD2/u3otOeF zE/RwXWzBeLFHOvBhRBRQxxeM4AX59jqgiju77SviYyt3nLt8arbhDFaE47JUOFd K0ziwhmh/IMhEdYY6MmtptjT4184v8J99UOShGX/yJYqp7MekN+cPYWo9/KdRzoy QBzclo9+yhKCT2Q1xw8ZnqPZ7QP5iWjyNj3D65FUy3yq0aHD5y3tQkIXBYixq6De 36iFewEtJOBOzdYCT4//MVQxXK82ax8FK6FDHprhtqzk34+ow/T5WLFE4K+FhT87 ePtR+G3KjVssD3IOJCe1MLkMHQgg9vdTuRbJ8s1vGyqJlgN1dt8aM6JfLrTwXWtC nCKeho8hSzwSGm1NZLNf3vWjdz6rBCkrx54tzR/JYGMLYHrR2nhKNHtjcm6khsrg PJ47EAPD63XTEkJvEF8wMfw7I5E7/nPEL2ARDnWLXg+ryfD6IMZd5N3aNipoSbDB 3kRHbwyo7wr/pKOpw+to =cM6c -----END PGP SIGNATURE----- --yb64olsjv2qgyqvz--