- **Type**: defect --> discussion
---
** [tickets:#319] AMF crash with long comp/CSI DNs**
**Status:** unassigned
**Created:** Fri May 24, 2013 09:00 AM UTC by hano
**Last Updated:** Fri May 24, 2013 09:11 AM UTC
**Owner:** nobody
AMF crash with long comp/CSI DNs (defect):
(gdb) bt full
#0 0x00007f2b592624a9 in free () from /lib64/libc.so.6
No symbol table info available.
#1 0x000000000041fe74 in avd_compcsi_delete (cb=0x69a9a0, susi=0x7f2b5400c8b0,
ckpt=false) at avd_csi.c:1071
i_compcsi = <optimized out>
prev_compcsi = <optimized out>
__FUNCTION__ = "avd_compcsi_delete"
#2 0x000000000045d5ad in avd_sg_su_asgn_del_util (cb=0x69a9a0,
su=0x7f2b540093d0, del_flag=true, q_flag=false) at avd_sgproc.c:2334
i_susi = 0x7f2b5400c8b0
__FUNCTION__ = "avd_sg_su_asgn_del_util"
#3 0x000000000043c96a in avd_sg_2n_susi_sucss_sg_reln (state=<optimized out>,
act=<optimized out>, susi=<optimized out>, su=<optimized out>,
cb=<optimized out>) at avd_sg2Nfsm.c:1881
i_susi = <optimized out>
flag = <optimized out>
s_susi = 0x7f2b5400c8b0
o_susi = <optimized out>
a_susi = <optimized out>
n_susi = <optimized out>
o_su = 0x7f2b5400a2c0
l_su = <optimized out>
rc = <optimized out>
__FUNCTION__ = "avd_sg_2n_susi_sucss_sg_reln"
in avd_compcsi_delete avd_delete_csiassignment_from_imm is called before
free(). In that function the stack is overwritten with a too long DN causing
calle-saved registers (rbx base address for variable lcomp_csi) to be restored
with wrong values. rbx is used to load rdi (1st arg ptr) calling free causing a
general protection, non-canonical address.
- missing validation in AMF
- non safe functions (redesign avsv_create_association_class_dn)
---
Sent from sourceforge.net because [email protected] is
subscribed to https://sourceforge.net/p/opensaf/tickets/
To unsubscribe from further messages, a project admin can change settings at
https://sourceforge.net/p/opensaf/admin/tickets/options. Or, if this is a
mailing list, you can unsubscribe from the mailing list.
------------------------------------------------------------------------------
Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more!
Discover the easy way to master current and previous Microsoft technologies
and advance your career. Get an incredible 1,500+ hours of step-by-step
tutorial videos with LearnDevNow. Subscribe today and save!
http://pubads.g.doubleclick.net/gampad/clk?id=58040911&iu=/4140/ostg.clktrk
_______________________________________________
Opensaf-tickets mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/opensaf-tickets
