Netopeer crashes by get / get-config request #1

rastislavs · 2016-04-26T13:06:46Z

Netopeer crashes by get / get-config request. Logs + backtrace:

netopeer2-server[17615]: Session 1: received message:
<rpc message-id="101" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
    <get/>
</rpc>
netopeer2-server[17615]: DICT: inserting "rpc" with collision 
netopeer2-server[17615]: DICT: inserting "message-id" with collision 
netopeer2-server[17615]: DICT: inserting "101" with collision 
netopeer2-server[17615]: DICT: inserting (refcount) "urn:ietf:params:xml:ns:netconf:base:1.0"
netopeer2-server[17615]: DICT: inserting (refcount) "get"
netopeer2-server[17615]: DICT: inserting (refcount) ""
netopeer2-server[17615]: DICT: inserting (refcount) ""

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x7ffff4fce700 (LWP 17616)]
0x00007ffff7965fd5 in lys_parent (node=0x63f648) at /home/rasto/libraries/libyang/src/tree_schema.c:2854
2854        if (node->parent->nodetype == LYS_AUGMENT) {
(gdb) bt
#0  0x00007ffff7965fd5 in lys_parent (node=0x63f648) at /home/rasto/libraries/libyang/src/tree_schema.c:2854
#1  0x00007ffff795e986 in ly_check_mandatory (data=0x7fffec0017d0, schema=0x640920, status=1) at /home/rasto/libraries/libyang/src/tree_schema.c:594
#2  0x00007ffff7966350 in lyd_check_topmandatory (data=0x7fffec0017d0, ctx=0x6212c0, rpc=0x0, options=528) at /home/rasto/libraries/libyang/src/tree_data.c:88
#3  0x00007ffff79400f1 in lyd_parse_xml (ctx=0x6212c0, root=0x7fffec0008d8, options=528) at /home/rasto/libraries/libyang/src/parser_xml.c:562
#4  0x00007ffff76f27ae in nc_recv_rpc (session=0x670f90, rpc=0x7ffff4fcde88) at /home/rasto/libraries/libnetconf2/src/session_server.c:820
#5  0x00007ffff76f2fa5 in nc_ps_poll (ps=0x670600, timeout=500) at /home/rasto/libraries/libnetconf2/src/session_server.c:1039
#6  0x0000000000404211 in process_loop (arg=0x0) at /home/rasto/libraries/Netopeer2/server/main.c:382
#7  0x00007ffff7bc4182 in start_thread (arg=0x7ffff4fce700) at pthread_create.c:312
#8  0x00007ffff71c847d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:111

List of modules installed in sysrepo (minimal set required by Netopeer + turing-machine):

Module Name                   | Revision   | Data Owner          | Permissions | Submodules                    | Enabled Features
---------------------------------------------------------------------------------------------------------------------------------
turing-machine                | 2013-12-27 | root:root           | 644         |                               |
ietf-netconf-monitoring       | 2010-10-04 | root:root           | 644         |                               |
ietf-netconf-acm              | 2012-02-22 |                     |             |                               |
ietf-netconf                  | 2011-06-01 | root:root           | 644         |                               |
ietf-netconf-with-defaults    | 2011-06-01 | root:root           | 644         |                               |

The text was updated successfully, but these errors were encountered:

michalvasko · 2016-05-03T10:57:54Z

Hi,
please try it now again, with the current master branches of all libyang, libnetconf2, and netopeer2-server. It works for me now because we added many bugfixes mainly to libyang, but I may have missed something.

Regards,
Michal

rastislavs · 2016-05-03T12:18:25Z

works correctly now, I'm closing the issue

As per the docs, the SIGEV_THREAD sigevent option instructs the kernel to create a thread in this process when that timer expires (in fact this is done by the C library, and the kernel "just" wakes up that thread AFAICT). However, this newly created thread appears to have completely bypassed TSAN, and when the just-created thread hits any TSAN interceptor which assumes that some per-thread TSAN structures have been already set up, the application segfaults (for example like this): #0 0x00005555556192d4 in __tsan::user_alloc_internal(__tsan::ThreadState*, unsigned long, unsigned long, unsigned long, bool) () CESNET#1 0x00005555556196a4 in __tsan::user_alloc(__tsan::ThreadState*, unsigned long, unsigned long) () CESNET#2 0x00005555555d3db5 in malloc () CESNET#3 0x00007ffff7889470 in timer_helper_thread (arg=<optimized out>) at ../sysdeps/unix/sysv/linux/timer_routines.c:88 CESNET#4 0x00007ffff787ddd4 in start_thread (arg=<optimized out>) at pthread_create.c:444 CESNET#5 0x00007ffff78ff9b0 in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:81 That's with the latest clang, or, in another case, with GCC: #0 0x00007ffff4e88fc6 in __sanitizer::CombinedAllocator<__sanitizer::SizeClassAllocator64<__tsan::AP64>, __sanitizer::LargeMmapAllocatorPtrArrayDynamic>::Allocate(__sanitizer::SizeClassAllocator64LocalCache<__sanitizer::SizeClassAllocator64<__tsan::AP64> >*, unsigned long, unsigned long) () from /nix/store/ds46sf6mb9xydn0gy97131y1w5hag5s8-gcc-12.2.0-lib/lib/libtsan.so.2 CESNET#1 0x00007ffff4e8686a in __tsan::user_alloc_internal(__tsan::ThreadState*, unsigned long, unsigned long, unsigned long, bool) () from /nix/store/ds46sf6mb9xydn0gy97131y1w5hag5s8-gcc-12.2.0-lib/lib/libtsan.so.2 CESNET#2 0x00007ffff4e869d8 in __tsan::user_alloc(__tsan::ThreadState*, unsigned long, unsigned long) () from /nix/store/ds46sf6mb9xydn0gy97131y1w5hag5s8-gcc-12.2.0-lib/lib/libtsan.so.2 CESNET#3 0x00007ffff4e4331e in malloc () from /nix/store/ds46sf6mb9xydn0gy97131y1w5hag5s8-gcc-12.2.0-lib/lib/libtsan.so.2 CESNET#4 0x00007ffff4cab4c0 in timer_helper_thread (arg=<optimized out>) at ../sysdeps/unix/sysv/linux/timer_routines.c:88 CESNET#5 0x00007ffff4c9fe24 in start_thread (arg=<optimized out>) at pthread_create.c:444 CESNET#6 0x00007ffff4d219b0 in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:81 I have no clue on how to fix this properly within TSAN. Bug: google/sanitizers#1612

As per the docs, the SIGEV_THREAD sigevent option instructs the kernel to create a thread in this process when that timer expires (in fact this is done by the C library, and the kernel "just" wakes up that thread AFAICT). However, this newly created thread appears to have completely bypassed TSAN, and when the just-created thread hits any TSAN interceptor which assumes that some per-thread TSAN structures have been already set up, the application segfaults (for example like this): #0 0x00005555556192d4 in __tsan::user_alloc_internal(__tsan::ThreadState*, unsigned long, unsigned long, unsigned long, bool) () #1 0x00005555556196a4 in __tsan::user_alloc(__tsan::ThreadState*, unsigned long, unsigned long) () #2 0x00005555555d3db5 in malloc () #3 0x00007ffff7889470 in timer_helper_thread (arg=<optimized out>) at ../sysdeps/unix/sysv/linux/timer_routines.c:88 #4 0x00007ffff787ddd4 in start_thread (arg=<optimized out>) at pthread_create.c:444 #5 0x00007ffff78ff9b0 in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:81 That's with the latest clang, or, in another case, with GCC: #0 0x00007ffff4e88fc6 in __sanitizer::CombinedAllocator<__sanitizer::SizeClassAllocator64<__tsan::AP64>, __sanitizer::LargeMmapAllocatorPtrArrayDynamic>::Allocate(__sanitizer::SizeClassAllocator64LocalCache<__sanitizer::SizeClassAllocator64<__tsan::AP64> >*, unsigned long, unsigned long) () from /nix/store/ds46sf6mb9xydn0gy97131y1w5hag5s8-gcc-12.2.0-lib/lib/libtsan.so.2 #1 0x00007ffff4e8686a in __tsan::user_alloc_internal(__tsan::ThreadState*, unsigned long, unsigned long, unsigned long, bool) () from /nix/store/ds46sf6mb9xydn0gy97131y1w5hag5s8-gcc-12.2.0-lib/lib/libtsan.so.2 #2 0x00007ffff4e869d8 in __tsan::user_alloc(__tsan::ThreadState*, unsigned long, unsigned long) () from /nix/store/ds46sf6mb9xydn0gy97131y1w5hag5s8-gcc-12.2.0-lib/lib/libtsan.so.2 #3 0x00007ffff4e4331e in malloc () from /nix/store/ds46sf6mb9xydn0gy97131y1w5hag5s8-gcc-12.2.0-lib/lib/libtsan.so.2 #4 0x00007ffff4cab4c0 in timer_helper_thread (arg=<optimized out>) at ../sysdeps/unix/sysv/linux/timer_routines.c:88 #5 0x00007ffff4c9fe24 in start_thread (arg=<optimized out>) at pthread_create.c:444 #6 0x00007ffff4d219b0 in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:81 I have no clue on how to fix this properly within TSAN. Bug: google/sanitizers#1612

rastislavs closed this as completed May 3, 2016

ZhaoGuangYue1986 mentioned this issue Dec 29, 2016

not able to connect cli to server #14

Closed

sudeeptoroy mentioned this issue Feb 21, 2017

segmentation fault in netopeer2 signal handler #102

Closed

rosy8 mentioned this issue Mar 21, 2017

Error reply for kill-session command #107

Closed

vishalwc mentioned this issue Apr 26, 2017

Notification is Not working in Netopeer2 #120

Closed

mathieu-mercier mentioned this issue May 12, 2017

CLI "yang" parsing fails despite libyang plugins being correctly loaded #138

Closed

yanjunxi mentioned this issue Jul 12, 2017

After subscribe at netopeer2-cli, install new model will cause netope… #157

Merged

dongyangf mentioned this issue May 11, 2018

netopeer2-server segfault #245

Closed

dongyangf mentioned this issue May 26, 2018

netopeer2 core dump in op_ntf_subscribe #259

Closed

darcyllingyan mentioned this issue May 27, 2018

I have imported the YANG to sysrepo, but the xml can't be written into the sysrepo #261

Closed

rajenderk18 mentioned this issue Jun 18, 2018

Netopeer Server is crashing. Not able to connect netopeer2-cli to netopeer2-server. Segmentation fault error occurs. please help. #284

Closed

dongyangf mentioned this issue Jul 18, 2018

netopeer2 crash in sr_commit #298

Closed

naveenchaubey mentioned this issue Jul 25, 2018

ERROR: Communication socket unexpectedly closed (libssh) #301

Closed

dipjyoti mentioned this issue Sep 6, 2018

edit-config with delete="operation" not working #333

Closed

nic1225 mentioned this issue Nov 20, 2018

callhome config error:Unknown element "call-home" #356

Closed

dwdrajesh mentioned this issue Jan 21, 2019

Netopeer2 server rejects client connection #383

Closed

dwdrajesh mentioned this issue Feb 4, 2019

Call home functionality not working #390

Closed

LilyCuili mentioned this issue Mar 22, 2019

Can't edit-config yang model added to netopeer2 server #411

Closed

dwdrajesh mentioned this issue Apr 5, 2019

Netopeer2 server does not receive client login #414

Closed

anabel1012 mentioned this issue Jul 31, 2019

SSH key exchange error #448

Closed

OlympusHo mentioned this issue Aug 8, 2019

netopeer2-cli cannot connect netopeer2-server,auth failed! #453

Closed

nolaughjun mentioned this issue Oct 19, 2019

netopeer2-cli segfault at error 6 in libc-2.17.so #478

Closed

gurugod mentioned this issue Nov 5, 2019

Getting SIGSEGV in netopper-2-server #486

Closed

neershar-bds mentioned this issue Dec 12, 2019

netopeer2-server cores while connecting through netopeer2-cli on ARMv7 processor (linux debian) #506

Closed

georgi-tinqin mentioned this issue Jan 14, 2020

Can't import ssh_callhome.xml #528

Closed

This was referenced Jan 22, 2020

netopeer2-server crashes on assert in libyang #535

Closed

Crash in netopeer2-server when handling multiple notification subscribers #536

Closed

crash in netopeer2-server/sysrepo #538

Closed

awesomenode mentioned this issue Jul 16, 2021

Using deref() in XPath filter causes segfault #961

Closed

igortern mentioned this issue Oct 12, 2021

sysrepo crashes on assertion #1039

Closed

vshaker mentioned this issue Nov 9, 2021

Unexpected action element error while trying to use user-rpc in netopeer2 #1062

Closed

masif-cs mentioned this issue Jan 20, 2022

crash during call-home establishment #1136

Closed

sowmi18 mentioned this issue Feb 1, 2022

callback rpc timed out error #1142

Closed

meghna-doshi mentioned this issue Apr 25, 2022

Crash in netopeer2-server #1201

Closed

ankit7gup mentioned this issue Apr 28, 2022

SSH callhome failing with user other than root #1203

Closed

meghna-doshi mentioned this issue Jul 1, 2022

Crash in netopeer2-server #1233

Closed

meghna-doshi mentioned this issue Jul 15, 2022

netopeer2-server crash when startTime in subscription is future time #1235

Closed

yanjfiber mentioned this issue Oct 14, 2022

Segmentation fault occurred in netopeer2-server when netopeer2-cli connected #1277

Closed

meghna-doshi mentioned this issue Oct 19, 2022

Crash in netopeer2-server in rpc error reply #1280

Closed

mpet mentioned this issue Nov 18, 2022

ssh_socket_exception_callback: Socket exception callback: 2 (104)[\n] when reconencting #1301

Closed

lilililizheng mentioned this issue Dec 6, 2022

timeout for receiving a reply expired #1316

Closed

robbynet mentioned this issue Dec 9, 2022

sr_edit_diff_add: Assertion `op == EDIT_DELETE' failed #1321

Closed

Bharanidharan-S mentioned this issue Feb 7, 2023

SSH callhome authentication denied #1346

Closed

ankit7gup mentioned this issue Feb 10, 2023

Netopeer2-server -t flag for timeout #1338

Closed

qupfer mentioned this issue May 17, 2023

Segfault during "edit-config --defop replace" if having an invalid "inet:domain-name;" in the config.xml #1400

Closed

alecanty mentioned this issue May 23, 2023

I can't connect netopeer2-server #1404

Closed

fei15115 mentioned this issue Jul 12, 2023

Access denied for 'password' #1437

Open

ankit7gup mentioned this issue Sep 19, 2023

Netopeer2-server core #1472

Open

Bhanupriya03 mentioned this issue Dec 13, 2023

Issues while compiling libnetconf2 and starting netopeer2-server compiled from devel branch #1514

Closed

Krisscut mentioned this issue Jan 30, 2024

ietf-netconf-notifications event "notif" was not processed. #1530

Closed

ankit7gup mentioned this issue Feb 27, 2024

NACM access denied #1542

Closed

lsang6WIND mentioned this issue Mar 11, 2024

coredump: SIGSEGV #1549

Closed

maxrossello mentioned this issue Mar 12, 2024

Netopeer2-server crash after user disconnection #1481

Closed

biswajit84 mentioned this issue Apr 24, 2024

Netopeer2-server couldn't Bind to 830 port #1569

Closed

InterNALXz mentioned this issue Jul 31, 2024

Cannot connect Server #1615

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Netopeer crashes by get / get-config request #1

Netopeer crashes by get / get-config request #1

rastislavs commented Apr 26, 2016

michalvasko commented May 3, 2016

rastislavs commented May 3, 2016

Netopeer crashes by get / get-config request #1

Netopeer crashes by get / get-config request #1

Comments

rastislavs commented Apr 26, 2016

michalvasko commented May 3, 2016

rastislavs commented May 3, 2016