[Date Prev][Date Next] [Chronological] [Thread] [Top]

SEGV on syncRepl provider (ITS#3296)



Full_Name: Aaron Richton
Version: 2.2.15
OS: Solaris 9
URL: 
Submission from: (NULL) (165.230.41.99)


OpenLDAP 2.2.15, BDB 4.2.52+2 patches, HDB databases, Cyrus SASL 2.1.18, OpenSSL
0.9.7d. We currently have two syncRepl consumers (refreshAndPersist). It appears
that one of them caused the provider to SEGV. The last connection in the
syslog:

conn=112607 fd=87 ACCEPT from IP=192.168.4.64:33057 (IP=0.0.0.0:389)
conn=112607 op=1 BIND dn="cn=readEverything,dc=crab,dc=rutgers,dc=edu"
method=128
conn=112607 op=1 BIND dn="cn=readEverything,dc=crab,dc=rutgers,dc=edu"
mech=SIMPLE ssf=0
conn=112607 op=1 RESULT tag=97 err=0 text=
conn=112607 op=2 SRCH base="dc=crab,dc=rutgers,dc=edu" scope=2 deref=0
filter="(objectClass=*)"
conn=112607 op=2 SRCH attr=* objectClass structuralObjectClass entryCSN
[dies]

gdb "thr apply all bt":

Thread 10 (process 535678    ):
#0  0xfedd58fc in __lwp_park () from /usr/lib/libthread.so.1
#1  0xfedd2ba8 in cond_wait_queue () from /usr/lib/libthread.so.1
#2  0xfedd3364 in cond_wait () from /usr/lib/libthread.so.1
#3  0xfedd33a0 in pthread_cond_wait () from /usr/lib/libthread.so.1
#4  0x00181098 in ldap_pvt_thread_cond_wait (cond=0x3394d0, mutex=0x3394b8)
    at thr_posix.c:251
#5  0x0017faec in ldap_int_thread_pool_wrapper (xpool=0x3394b0) at tpool.c:456

Thread 9 (process 470142    ):
#0  0xfedd59b4 in lwp_yield () from /usr/lib/libthread.so.1
#1  0x00180f24 in ldap_pvt_thread_yield () at thr_posix.c:184
#2  0x00110334 in hdb_do_search () at tools.c:288
#3  0x0010c524 in hdb_search () at tools.c:288
#4  0x00079958 in do_search (op=0x33b2d60, rs=0xd83ffd58) at search.c:412
#5  0x00075e7c in connection_operation (ctx=0xd83ffe14, arg_v=0x33b2d60)
    at connection.c:1073
#6  0x0017fb68 in ldap_int_thread_pool_wrapper (xpool=0x3394b0) at tpool.c:467

Thread 8 (process 404606    ):
#0  0xff319830 in __lock_getobj () from /usr/local/lib/libdb-4.2.so
#1  0xff317188 in __lock_get_internal () from /usr/local/lib/libdb-4.2.so
#2  0xff316780 in __lock_vec () from /usr/local/lib/libdb-4.2.so
#3  0xff2fa2c0 in __db_lget () from /usr/local/lib/libdb-4.2.so
#4  0xff2a69cc in __bam_search () from /usr/local/lib/libdb-4.2.so
#5  0xff29bb94 in __bam_c_search () from /usr/local/lib/libdb-4.2.so
#6  0xff298214 in __bam_c_get () from /usr/local/lib/libdb-4.2.so
#7  0xff2edad8 in __db_c_get () from /usr/local/lib/libdb-4.2.so
#8  0xff2f56a4 in __db_get () from /usr/local/lib/libdb-4.2.so
#9  0xff2f55ac in __db_get_pp () from /usr/local/lib/libdb-4.2.so
#10 0x0014a36c in hdb_id2entry (be=0x381660, tid=0x49eceb8, id=1032,
    e=0xd8b3f734) at id2entry.c:111
#11 0x0013e1e8 in hdb_cache_find_id (op=0x2a801c0, tid=0x0, id=1032,
    eip=0xd8b3f968, islocked=0, locker=445, lock=0xd8b3f7fc) at cache.c:700
#12 0x0010e98c in hdb_do_search () at tools.c:288
#13 0x0010c524 in hdb_search () at tools.c:288
#14 0x00079958 in do_search (op=0x2a801c0, rs=0xd8bffd58) at search.c:412
#15 0x00075e7c in connection_operation (ctx=0xd8bffe14, arg_v=0x2a801c0)
    at connection.c:1073
#16 0x0017fb68 in ldap_int_thread_pool_wrapper (xpool=0x3394b0) at tpool.c:467

Thread 7 (process 339070    ):
#0  0xfedd58fc in __lwp_park () from /usr/lib/libthread.so.1
#1  0xfedd2ba8 in cond_wait_queue () from /usr/lib/libthread.so.1
#2  0xfedd3364 in cond_wait () from /usr/lib/libthread.so.1
#3  0xfedd33a0 in pthread_cond_wait () from /usr/lib/libthread.so.1
#4  0x00181098 in ldap_pvt_thread_cond_wait (cond=0x3394d0, mutex=0x3394b8)
    at thr_posix.c:251
#5  0x0017faec in ldap_int_thread_pool_wrapper (xpool=0x3394b0) at tpool.c:456

Thread 6 (process 273534    ):
#0  0xfedd58fc in __lwp_park () from /usr/lib/libthread.so.1
#1  0xfedd2ba8 in cond_wait_queue () from /usr/lib/libthread.so.1
#2  0xfedd3364 in cond_wait () from /usr/lib/libthread.so.1
#3  0xfedd33a0 in pthread_cond_wait () from /usr/lib/libthread.so.1
#4  0x00181098 in ldap_pvt_thread_cond_wait (cond=0x3394d0, mutex=0x3394b8)
    at thr_posix.c:251
#5  0x0017faec in ldap_int_thread_pool_wrapper (xpool=0x3394b0) at tpool.c:456

Thread 5 (process 207998    ):
#0  0xfedd58fc in __lwp_park () from /usr/lib/libthread.so.1
#1  0xfedd1678 in mutex_lock_queue () from /usr/lib/libthread.so.1
#2  0xfedd2078 in slow_lock () from /usr/lib/libthread.so.1
#3  0xfee467b4 in malloc () from /usr/lib/libc.so.1
#4  0x001c5c48 in ber_memalloc_x (s=24, ctx=0x0) at memory.c:232
#5  0x00099bf8 in ch_malloc (size=24) at ch_malloc.c:155
#6  0x000da6d0 in sl_malloc (size=24, ctx=0x29b6798) at sl_malloc.c:135
#7  0x001c5c78 in ber_memalloc_x (s=17, ctx=0x29b6798) at memory.c:235
#8  0x001c6528 in ber_dupbv_x (dst=0xda33f72c, src=0x6196ad4, ctx=0x29b6798)
    at memory.c:518
#9  0x000eb380 in slap_build_syncUUID_set (op=0x2a37be8, set=0xda33f7e0,
    e=0x61968b0) at ldapsync.c:531
#10 0x0010ffa4 in hdb_do_search () at tools.c:288
#11 0x0010c524 in hdb_search () at tools.c:288
#12 0x00079958 in do_search (op=0x2a37be8, rs=0xda3ffd58) at search.c:412
#13 0x00075e7c in connection_operation (ctx=0xda3ffe14, arg_v=0x2a37be8)
    at connection.c:1073
#14 0x0017fb68 in ldap_int_thread_pool_wrapper (xpool=0x3394b0) at tpool.c:467

Thread 4 (process 142462    ):
#0  0xfee9d608 in _poll () from /usr/lib/libc.so.1
#1  0xfee51e78 in _select () from /usr/lib/libc.so.1
#2  0xfedce6b4 in select () from /usr/lib/libthread.so.1
#3  0x00070b38 in slapd_daemon_task (ptr=0x0) at daemon.c:1422

Thread 3 (process 76926    ):
#0  0xfee9f334 in _lwp_wait () from /usr/lib/libc.so.1
#1  0xfedcd6bc in lwp_wait () from /usr/lib/libthread.so.1
#2  0xfedc90f0 in _thrp_join () from /usr/lib/libthread.so.1
#3  0x00180e98 in ldap_pvt_thread_join (thread=2, thread_return=0x0)
    at thr_posix.c:151
#4  0x00072664 in slapd_daemon () at daemon.c:2032
#5  0x00060bec in main (argc=4, argv=0xffbffd94) at main.c:710

Thread 2 (process 666750    ):
#0  0xfedd58fc in __lwp_park () from /usr/lib/libthread.so.1
#1  0xfedd2ba8 in cond_wait_queue () from /usr/lib/libthread.so.1
#2  0xfedd3364 in cond_wait () from /usr/lib/libthread.so.1
#3  0xfedd33a0 in pthread_cond_wait () from /usr/lib/libthread.so.1
#4  0x00181098 in ldap_pvt_thread_cond_wait (cond=0x3394d0, mutex=0x3394b8)
    at thr_posix.c:251
#5  0x0017faec in ldap_int_thread_pool_wrapper (xpool=0x3394b0) at tpool.c:456

Thread 1 (process 601214    ):
#0  0xfee47570 in t_splay () from /usr/lib/libc.so.1
#1  0xfee472e0 in t_delete () from /usr/lib/libc.so.1
#2  0xfee46f00 in realfree () from /usr/lib/libc.so.1
#3  0xfee477a0 in cleanfree () from /usr/lib/libc.so.1
#4  0xfee468dc in _malloc_unlocked () from /usr/lib/libc.so.1
#5  0xfee467bc in malloc () from /usr/lib/libc.so.1
#6  0x001c5c48 in ber_memalloc_x (s=24, ctx=0x0) at memory.c:232
#7  0x00099bf8 in ch_malloc (size=24) at ch_malloc.c:155
#8  0x000da6d0 in sl_malloc (size=24, ctx=0x5721940) at sl_malloc.c:135
#9  0x001c5c78 in ber_memalloc_x (s=17, ctx=0x5721940) at memory.c:235
#10 0x001c6528 in ber_dupbv_x (dst=0xd733f72c, src=0x449b004, ctx=0x5721940)
    at memory.c:518
#11 0x000eb380 in slap_build_syncUUID_set (op=0x37423f8, set=0xd733f7e0,
    e=0x449adf0) at ldapsync.c:531
#12 0x0010ffa4 in hdb_do_search () at tools.c:288
#13 0x0010c524 in hdb_search () at tools.c:288
#14 0x00079958 in do_search (op=0x37423f8, rs=0xd73ffd58) at search.c:412
#15 0x00075e7c in connection_operation (ctx=0xd73ffe14, arg_v=0x37423f8)
    at connection.c:1073
#16 0x0017fb68 in ldap_int_thread_pool_wrapper (xpool=0x3394b0) at tpool.c:467