Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Linux] Segmentation fault when subscribing to an unauthorized topic #287

Closed
BorisBoutillier opened this issue May 11, 2023 · 4 comments
Closed

[Linux] Segmentation fault when subscribing to an unauthorized topic #287

BorisBoutillier opened this issue May 11, 2023 · 4 comments
Labels
bug Something isn't working

Comments

@BorisBoutillier
Copy link
Contributor

Bug report

Required Info:

  • Operating System:
    Linux Ubuntu 22.04
  • Installation type:
    Binary Iron
  • Version or commit hash:
    Iron
  • DDS implementation:
    Fast-RTPS

Steps to reproduce issue

I have followed the SROS_Linux.md with installation from packages with Ros2 Iron for testing.

In the "Access control" section, when running the command to check that the listener cannot subscribe to a topic other than chatter, running the provided command leads to Segmentation Fault, which is a valid but abrupt way to say "Access control forbidden".
image

Expected behavior

Some kind of error message that it is forbidden to subscribe to the topic.

Actual behavior

Segmentation fault

Additional information

This is perhaps the expected behaviour , in this case just close this.
Discovered as part of the Iron testing, see osrf/ros2_test_cases#535
@clalancette clalancette added the bug Something isn't working label May 18, 2023
@clalancette clalancette mentioned this issue Jul 17, 2023
Merged
@clalancette
Copy link
Contributor

I finally got some time to look into this, and it is indeed a bug (or rather, a couple of bugs). I fixed one of them in ros2/rmw_fastrtps#697, but more work is likely required.

@mikaelarguedas
Copy link
Member

On Fast-RTPS / Ubuntu Noble / Jazzy the outcome seems decent:

mikael@sanji:~/sros2_demo$ ros2 run demo_nodes_py listener --ros-args -r chatter:=not_chatter -e /talker_listener/listener
[INFO] [1715000071.436466975] [rcl]: Found security directory: /home/mikael/sros2_demo/demo_keystore/enclaves/talker_listener/listener
2024-05-06 14:54:31.518 [SECURITY Error] rt/not_chatter topic not found in allow rule. (./src/cpp/security/accesscontrol/Permissions.cpp:1176) -> Function check_create_datareader
2024-05-06 14:54:31.518 [SECURITY Error] Error checking creation of local reader  (rt/not_chatter topic not found in allow rule. (./src/cpp/security/accesscontrol/Permissions.cpp:1176))
 -> Function get_datareader_sec_attributes
2024-05-06 14:54:31.518 [DATA_READER Error] Problem creating associated Reader -> Function enable

>>> [rcutils|error_handling.c:108] rcutils_set_error_state()
This error state is being overwritten:

  'create_datareader() could not create data reader, at ./src/subscription.cpp:673, at ./src/rcl/subscription.c:112'

with this new error message:

  'invalid allocator, at ./src/rcl/subscription.c:261'

rcutils_reset_error() should be called after error handling to avoid this.
<<<
invalid allocator, at ./src/rcl/subscription.c:261
Traceback (most recent call last):
  File "/opt/ros/jazzy/lib/demo_nodes_py/listener", line 33, in <module>
    sys.exit(load_entry_point('demo-nodes-py==0.33.2', 'console_scripts', 'listener')())
             ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/opt/ros/jazzy/lib/python3.12/site-packages/demo_nodes_py/topics/listener.py", line 35, in main
    node = Listener()
           ^^^^^^^^^^
  File "/opt/ros/jazzy/lib/python3.12/site-packages/demo_nodes_py/topics/listener.py", line 26, in __init__
    self.sub = self.create_subscription(String, 'chatter', self.chatter_callback, 10)
               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/opt/ros/jazzy/lib/python3.12/site-packages/rclpy/node.py", line 1628, in create_subscription
    subscription_object = _rclpy.Subscription(
                          ^^^^^^^^^^^^^^^^^^^^
rclpy._rclpy_pybind11.RCLError: Failed to create subscription: invalid allocator, at ./src/rcl/subscription.c:261
[ros2run]: Process exited with failure 1

@mikaelarguedas
Copy link
Member

On Iron it still segfaults but with explicit error message:

root@a70c5eb1db51:~/sros2_demo# ros2 run demo_nodes_py listener --ros-args -r chatter:=not_chatter -e /talker_listener/listener
[INFO] [1715000280.507727878] [rcl]: Found security directory: /root/sros2_demo/demo_keystore/enclaves/talker_listener/listener
2024-05-06 12:58:00.592 [SECURITY Error] rt/not_chatter topic not found in allow rule. (./src/cpp/security/accesscontrol/Permissions.cpp:1245) -> Function check_create_datareader
2024-05-06 12:58:00.592 [SECURITY Error] Error checking creation of local reader  (rt/not_chatter topic not found in allow rule. (./src/cpp/security/accesscontrol/Permissions.cpp:1245))
 -> Function get_datareader_sec_attributes
2024-05-06 12:58:00.592 [DATA_READER Error] Problem creating associated Reader -> Function enable
[ros2run]: Segmentation fault

@mikaelarguedas
Copy link
Member

So IMO we can close this @clalancette

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
No open projects
Jazzy Jalisco
Status: Done
Milestone
No milestone
Development

No branches or pull requests
3 participants
@clalancette @mikaelarguedas @BorisBoutillier