A NOTE has been added to this issue.
======================================================================
http://dbmail.org/mantis/view.php?id=1088
======================================================================
Reported By: AndroSyn
Assigned To:
======================================================================
Project: DBMail
Issue ID: 1088
Category: IMAP daemon
Reproducibility: sometimes
Severity: crash
Priority: urgent
Status: new
target:
======================================================================
Date Submitted: 26-Aug-17 15:52 CEST
Last Modified: 14-Sep-17 17:01 CEST
======================================================================
Summary: dbmail-imapd crashes in _merge_search with 3.2.3
Description:
dbmail-imapd seems to be crashing about the same time on two servers. The
database is a galera cluster, so the two systems have identical
configuration otherwise. ASAN caught this crash.
ASAN:DEADLYSIGNAL
=================================================================
==69409==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000
(pc 0x7ff6e563472e bp 0x7ff6d4fd8b40 sp 0x7ff6d4fd8af0 T16)
==69409==The signal is caused by a READ memory access.
==69409==Hint: address points to the zero page.
http://dbmail.org/mantis/view.php?id=0 0x7ff6e563472d in _merge_search
(/usr/local/dbmail/lib/dbmail/libdbmail.so.0+0x1672d)
http://dbmail.org/mantis/view.php?id=1 0x7ff6e6a5ca14 in
g_node_children_foreach
(/lib64/libglib-2.0.so.0+0x3495a4ca14)
http://dbmail.org/mantis/view.php?id=2 0x7ff6e56346b3 in _merge_search
(/usr/local/dbmail/lib/dbmail/libdbmail.so.0+0x166b3)
http://dbmail.org/mantis/view.php?id=3 0x7ff6e6a5c419
(/lib64/libglib-2.0.so.0+0x3495a4c419)
http://dbmail.org/mantis/view.php?id=4 0x7ff6e6a5c3e8
(/lib64/libglib-2.0.so.0+0x3495a4c3e8)
http://dbmail.org/mantis/view.php?id=5 0x7ff6e6a5d130 in g_node_traverse
(/lib64/libglib-2.0.so.0+0x3495a4d130)
http://dbmail.org/mantis/view.php?id=6 0x7ff6e5639134 in
dbmail_mailbox_search
(/usr/local/dbmail/lib/dbmail/libdbmail.so.0+0x1b134)
http://dbmail.org/mantis/view.php?id=7 0x7ff6e7d7026d in sorted_search_enter
/home/asethman/dbmail-3.2.3/src/imapcommands.c:1963
http://dbmail.org/mantis/view.php?id=8 0x7ff6e6a7c31a
(/lib64/libglib-2.0.so.0+0x3495a6c31a)
http://dbmail.org/mantis/view.php?id=9 0x7ff6e6a7a3e3
(/lib64/libglib-2.0.so.0+0x3495a6a3e3)
http://dbmail.org/mantis/view.php?id=10 0x7ff6e5204aa0 in start_thread
(/lib64/libpthread.so.0+0x3494207aa0)
http://dbmail.org/mantis/view.php?id=11 0x7ff6e4d3bbcc in __clone
(/lib64/libc.so.6+0x3493ee8bcc)
AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV
(/usr/local/dbmail/lib/dbmail/libdbmail.so.0+0x1672d) in _merge_search
Thread T16 created by T0 here:
http://dbmail.org/mantis/view.php?id=0 0x7ff6e7c84a60 in
__interceptor_pthread_create
../../.././libsanitizer/asan/asan_interceptors.cc:243
http://dbmail.org/mantis/view.php?id=1 0x7ff6e6f310ad
(/lib64/libgthread-2.0.so.0+0x34972020ad)
==69409==ABORTING
======================================================================
----------------------------------------------------------------------
(0003793) AndroSyn (developer) - 14-Sep-17 17:01
http://dbmail.org/mantis/view.php?id=1088#c3793
----------------------------------------------------------------------
Attached patch to check for NULL. I'm not sure if this is the correct fix
but it stops the dbmail-imapd process from crashing.
Issue History
Date Modified Username Field Change
======================================================================
26-Aug-17 15:52 AndroSyn New Issue
26-Aug-17 15:53 AndroSyn Severity minor => crash
26-Aug-17 15:53 AndroSyn Summary dbmail-imapd crashes in
_merge_search => dbmail-imapd crashes in _merge_search with 3.2.3
14-Sep-17 17:00 AndroSyn File Added: search_null_check.patch
14-Sep-17 17:01 AndroSyn Note Added: 0003793
======================================================================
_______________________________________________
Dbmail-dev mailing list
Dbmail-dev@dbmail.org
http://lists.nfg.nl/mailman/listinfo/dbmail-dev
