Wind River Support Network


LIN6-7205 : CLONE - wrl 4,5,6 : syslog-ng 3.4.2 crashes every few hours with TCP/TLS enabled

Created: Apr 22, 2014    Updated: Dec 3, 2018
Resolved Date: Apr 23, 2014
Previous ID: LIN4-31289
Found In Version:
Fix Version:
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace


Happens in syslog-ng 3.4.2 (RCPL23 with latest syslog-ng patches) when TCP and TLS is used.

Core was generated by `./syslog-ng --process-mode foreground -f /proj/syslog-ng/leakwork/etc/syslog-ng'.
Program terminated with signal 11, Segmentation fault.
#0  __strlen_ia32 () at ../sysdeps/i386/i686/multiarch/../../i586/strlen.S:69
69	../sysdeps/i386/i686/multiarch/../../i586/strlen.S: No such file or directory.
(gdb) bt
#0  __strlen_ia32 () at ../sysdeps/i386/i686/multiarch/../../i586/strlen.S:69
#1  0xb74a5c26 in __GI___strdup (s=0xffffffff <Address 0xffffffff out of bounds>) at strdup.c:42
#2  0xb7412333 in evt_tag_str () from /usr/lib/
#3  0xb7711b32 in log_proto_server_options_validate (options=0x8847708) at logproto-server.c:138
#4  0xb771614b in log_proto_server_validate_options (self=<optimized out>) at logproto-server.h:82
#5  log_reader_init (s=0x8831000) at logreader.c:638
#6  0xb73b7356 in log_pipe_init (cfg=0x0, s=0x8831000) at ../../lib/logpipe.h:253
#7  log_pipe_init (cfg=0x0, s=0x8831000) at afsocket-source.c:763
#8  afsocket_sc_init (s=0x885d510) at afsocket-source.c:149
#9  0xb73b8089 in log_pipe_init (cfg=0x0, s=<optimized out>) at ../../lib/logpipe.h:253
#10 log_pipe_init (cfg=0x0, s=<optimized out>) at afsocket-source.c:763
#11 afsocket_sd_init (s=0x899cd78) at afsocket-source.c:548
#12 0xb73bb4d2 in afunix_sd_init (s=0x899cd78) at afunix-source.c:194
#13 0xb7703c86 in log_pipe_init (cfg=<optimized out>, s=0x899cd78) at logpipe.h:253
#14 cfg_tree_start (self=0x89797ac) at cfg-tree.c:1064
#15 0xb76fe22b in cfg_init (cfg=0x89796b0) at cfg.c:220
#16 0xb771ed75 in main_loop_reload_config_apply () at mainloop.c:501
#17 0xb771f09a in main_loop_io_worker_sync_call (func=<optimized out>) at mainloop.c:456
#18 0xb771f630 in sig_hup_handler (s=0x0) at mainloop.c:609
#19 0xb773e2ff in iv_signal_event (_this=0xb776df60) at iv_signal.c:170
#20 0xb773cbf3 in iv_event_raw_got_event (_this=0xb776df84) at iv_event_raw_posix.c:89
#21 0xb773d34d in iv_fd_poll_and_run (st=0x8827f60, to=0xbff14628) at iv_fd.c:163
#22 0xb773df24 in iv_main () at iv_main_posix.c:117
#23 0xb771f8f9 in main_loop_run () at mainloop.c:737
#24 0x08048f55 in main (argc=1, argv=0xbff14734) at main.c:267

In the console we see : [2014-04-04T12:27:02.116+00:00 L] syslog-ng[117]: Unknown character set name specified; encoding='\x08@-M-i80M-^PM-e,'

Steps to Reproduce

May be due to this leak here :

[2014-04-13T20:13:37.654+02:00 L] syslog-ng[9180]: Configuration reload request received, reloading configuration;
==9180== Invalid read of size 4
==9180==    at 0x4073B0F: log_proto_server_options_validate (logproto-server.c:136)
==9180==    by 0x407814A: log_reader_init (logproto-server.h:82)
==9180==    by 0x47F0355: afsocket_sc_init (logpipe.h:253)
==9180==    by 0x47F1088: afsocket_sd_init (logpipe.h:253)
==9180==    by 0x47F44D1: afunix_sd_init (afunix-source.c:194)
==9180==    by 0x4065C85: cfg_tree_start (logpipe.h:253)
==9180==    by 0x406022A: cfg_init (cfg.c:220)
==9180==    by 0x4080D74: main_loop_reload_config_apply (mainloop.c:501)
==9180==    by 0x4081099: main_loop_io_worker_sync_call (mainloop.c:456)
==9180==    by 0x408162F: sig_hup_handler (mainloop.c:609)
==9180==    by 0x40A02FE: iv_signal_event (iv_signal.c:170)
==9180==    by 0x409EBF2: iv_event_raw_got_event (iv_event_raw_posix.c:89)
==9180==  Address 0x44398bc is 12 bytes inside a block of size 512 free'd
==9180==    at 0x402B06C: free (in /usr/lib/valgrind/
==9180==    by 0x411DCCA: ??? (in /lib/i386-linux-gnu/
==9180==    by 0x411DF4F: g_free (in /lib/i386-linux-gnu/
==9180==    by 0x480753E: log_proto_file_writer_flush (logproto-file-writer.c:114)
==9180==    by 0x407F9B8: log_writer_flush (logproto-client.h:91)
==9180==    by 0x407FB32: log_writer_work_perform (logwriter.c:130)
==9180==    by 0x41FE4D2: (below main) (libc-start.c:226)

Other Downloads

Live chat