[jira] [Comment Edited] (GUACAMOLE-384) Guacd crashes in buffer.c during stress test

[Michael Jumper (JIRA)]

    [ 
https://issues.apache.org/jira/browse/GUACAMOLE-384?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16189101#comment-16189101
 ] 

Michael Jumper edited comment on GUACAMOLE-384 at 10/3/17 12:27 AM:
--------------------------------------------------------------------

Got a bunch of the below errors from valgrind.

{code:none}
==7271== Invalid read of size 4
==7271==    at 0xACCD512: guac_terminal_buffer_get_row (buffer.c:87)
==7271==    by 0xACCD89A: guac_terminal_buffer_set_columns (buffer.c:196)
==7271==    by 0xACCFC13: __guac_terminal_set_columns (terminal.c:57)
==7271==    by 0xACD1E30: guac_terminal_set_columns (terminal.c:1234)
==7271==    by 0xACD0CBD: guac_terminal_set (terminal.c:676)
==7271==    by 0xACD3E45: guac_terminal_echo (terminal_handlers.c:273)
==7271==    by 0xACD0EF7: guac_terminal_write (terminal.c:730)
==7271==    by 0xACC5420: ssh_client_thread (ssh.c:342)
==7271==    by 0x59B61A3: start_thread (pthread_create.c:309)
==7271==    by 0x5EBD65C: clone (in /lib/libc.so.6)
==7271==  Address 0x8c4e0d0 is 32 bytes inside a block of size 48 free'd
==7271==    at 0x4C28BC7: free (vg_replace_malloc.c:473)
==7271==    by 0xACCD4F9: guac_terminal_buffer_free (buffer.c:76)
==7271==    by 0xACD0722: guac_terminal_free (terminal.c:428)
==7271==    by 0xACC42E1: guac_ssh_client_free_handler (client.c:73)
==7271==    by 0x50A9814: guac_client_free (client.c:193)
==7271==    by 0x404D71: guacd_exec_proc (proc.c:191)
==7271==    by 0x404F3D: guacd_create_proc (proc.c:253)
==7271==    by 0x403BB7: guacd_route_connection (connection.c:299)
==7271==    by 0x403DBF: guacd_connection_thread (connection.c:394)
==7271==    by 0x59B61A3: start_thread (pthread_create.c:309)
==7271==    by 0x5EBD65C: clone (in /lib/libc.so.6)
{code}


was (Author: sanhex):
Got a bunch of the below errors from valgrind.

==7271== Invalid read of size 4
==7271==    at 0xACCD512: guac_terminal_buffer_get_row (buffer.c:87)
==7271==    by 0xACCD89A: guac_terminal_buffer_set_columns (buffer.c:196)
==7271==    by 0xACCFC13: __guac_terminal_set_columns (terminal.c:57)
==7271==    by 0xACD1E30: guac_terminal_set_columns (terminal.c:1234)
==7271==    by 0xACD0CBD: guac_terminal_set (terminal.c:676)
==7271==    by 0xACD3E45: guac_terminal_echo (terminal_handlers.c:273)
==7271==    by 0xACD0EF7: guac_terminal_write (terminal.c:730)
==7271==    by 0xACC5420: ssh_client_thread (ssh.c:342)
==7271==    by 0x59B61A3: start_thread (pthread_create.c:309)
==7271==    by 0x5EBD65C: clone (in /lib/libc.so.6)
==7271==  Address 0x8c4e0d0 is 32 bytes inside a block of size 48 free'd
==7271==    at 0x4C28BC7: free (vg_replace_malloc.c:473)
==7271==    by 0xACCD4F9: guac_terminal_buffer_free (buffer.c:76)
==7271==    by 0xACD0722: guac_terminal_free (terminal.c:428)
==7271==    by 0xACC42E1: guac_ssh_client_free_handler (client.c:73)
==7271==    by 0x50A9814: guac_client_free (client.c:193)
==7271==    by 0x404D71: guacd_exec_proc (proc.c:191)
==7271==    by 0x404F3D: guacd_create_proc (proc.c:253)
==7271==    by 0x403BB7: guacd_route_connection (connection.c:299)
==7271==    by 0x403DBF: guacd_connection_thread (connection.c:394)
==7271==    by 0x59B61A3: start_thread (pthread_create.c:309)
==7271==    by 0x5EBD65C: clone (in /lib/libc.so.6)


> Guacd crashes in buffer.c during stress test 
> ---------------------------------------------
>
>                 Key: GUACAMOLE-384
>                 URL: https://issues.apache.org/jira/browse/GUACAMOLE-384
>             Project: Guacamole
>          Issue Type: Bug
>          Components: Terminal
>    Affects Versions: 0.9.12-incubating
>         Environment: GNU/Linux x86_64
>            Reporter: Phillip Arcuri
>            Priority: Blocker
>
> In a stress test we kick off an SSH session every second.  The session does a 
> minimal amount of work and exits after a few seconds.  A ps -ef shows we have 
> 2 to 6 instances running at one time.  About 1 in 10 of the instances cores 
> with corrupted buffer data at line buffer.c:108.:
> (gdb) p *buffer
> $2 = {default_character = {value = -1269703408, attributes = {bold = 170, 
> reverse = 42, cursor = false, underscore = false, foreground = 0,
>       background = 0}, width = -1269422328}, rows = 0x2aaab456fa30, top = 
> 686, length = 0, available = 686}
> As an aside I also see roughly 1 in 100 instances become a zombie process 
> hung in pthread_join.  Doubt that is related, but thought I'd mention it.
> This is a blocker for our deployment of a guacamole-enabled feature-set.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)