[jira] [Created] (QPID-8714) qpidd crashes in sasl_server_step during SASL authentication

songsongliao (Jira) Mon, 15 Sep 2025 01:44:04 -0700

songsongliao created QPID-8714:
----------------------------------

             Summary: qpidd crashes in sasl_server_step during SASL 
authentication
                 Key: QPID-8714
                 URL: https://issues.apache.org/jira/browse/QPID-8714
             Project: Qpid
          Issue Type: Bug
          Components: C++ Broker
    Affects Versions: qpid-cpp-1.39.0
            Reporter: songsongliao
             Fix For: Future
         Attachments: segv.png


qpidd (qpid-cpp-1.39.0) crashes with a SIGSEGV during client connection
when SASL authentication is enabled.

Backtrace excerpt:
#0  sasl_server_step() from /lib/x86_64-linux-gnu/libsasl2.so.2
#1  qpid::broker::CyrusAuthenticator::step
#2  qpid::broker::SaslAuthenticator::secureOk
#3  qpid::framing::ConnectionSecureOkBody::invoke
...
response=<error: Cannot access memory at address 0x100000000>

This indicates that qpidd passes an invalid response pointer to
sasl_server_step(), leading to a segmentation fault.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Created] (QPID-8714) qpidd crashes in sasl_server_step during SASL authentication

Reply via email to