[tor-bugs] #5102 [Tor Bridge]: segfault in entry_guard_register_connect_status on tor bridge running obfsproxy on openbsd

Tor Bug Tracker & Wiki torproject-admin at torproject.org
Sun Feb 12 15:19:44 UTC 2012 

#5102: segfault in entry_guard_register_connect_status on tor bridge running
obfsproxy on openbsd
-----------------------------+----------------------------------------------
 Reporter:  therealditzydoo  |          Owner:                     
     Type:  defect           |         Status:  new                
 Priority:  normal           |      Milestone:                     
Component:  Tor Bridge       |        Version:  Tor: 0.2.3.11-alpha
 Keywords:                   |         Parent:                     
   Points:                   |   Actualpoints:                     
-----------------------------+----------------------------------------------

Comment(by therealditzydoo):

 Here is the output after being compiled with -g -O0:

 {{{
 GNU gdb 6.3
 Copyright 2004 Free Software Foundation, Inc.
 GDB is free software, covered by the GNU General Public License, and you
 are
 welcome to change it and/or distribute copies of it under certain
 conditions.
 Type "show copying" to see the conditions.
 There is absolutely no warranty for GDB.  Type "show warranty" for
 details.
 This GDB was configured as "i386-unknown-openbsd5.0"...
 Core was generated by `tor'.
 Program terminated with signal 11, Segmentation fault.
 #0  0x1c07b57b in entry_guard_register_connect_status (digest=0x7d0e9b68
 "%ֲ$ⲯ�0370s-[", succeeded=1,
     mark_relay_status=0, now=1329059709) at circuitbuild.c:3909
 3909      SMARTLIST_FOREACH(entry_guards, entry_guard_t *, e,
 (gdb) bt
 #0  0x1c07b57b in entry_guard_register_connect_status (digest=0x7d0e9b68
 "%ֲ$ⲯ�0370s-[", succeeded=1,
     mark_relay_status=0, now=1329059709) at circuitbuild.c:3909
 #1  0x1c0ba387 in connection_or_set_state_open (conn=0x7d0e9b00) at
 connection_or.c:1700
 #2  0x1c08bea5 in command_process_netinfo_cell (cell=0xcfbc0620,
 conn=0x7d0e9b00) at command.c:916
 #3  0x1c08988d in command_process_cell (cell=0xcfbc0620, conn=0x7d0e9b00)
 at command.c:201
 #4  0x1c0baa51 in connection_or_process_cells_from_inbuf (conn=0x7d0e9b00)
 at connection_or.c:1832
 #5  0x1c0b7578 in connection_or_process_inbuf (conn=0x7d0e9b00) at
 connection_or.c:390
 #6  0x1c0a91db in connection_process_inbuf (conn=0x7d0e9b00,
 package_partial=1) at connection.c:3760
 #7  0x1c0a6e7a in connection_handle_read_impl (conn=0x7d0e9b00) at
 connection.c:2656
 #8  0x1c0a6f94 in connection_handle_read (conn=0x7d0e9b00) at
 connection.c:2697
 #9  0x1c001cb0 in conn_read_callback (fd=97, event=2, _conn=0x7d0e9b00) at
 main.c:702
 #10 0x1c137b35 in event_base_loop (base=0x87c47800, flags=0) at
 /usr/src/lib/libevent/event.c:402
 #11 0x1c0045e7 in do_main_loop () at main.c:1924
 #12 0x1c005cf7 in tor_main (argc=3, argv=0xcfbc0cc4) at main.c:2619
 #13 0x1c000406 in main (argc=Cannot access memory at address 0x0
 ) at tor_main.c:30
 (gdb)
 }}}

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5102#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tor-bugs mailing list