Ticket #2226 (closed defect: worksforme)

Opened 9 years ago

Last modified 9 years ago

[passwd] crashes (glibc-free()) when NEW password length > 8

Reported by: leadman Owned by: Nytowl
Priority: normal Milestone: Om2008.12
Component: Distro Version: current svn head
Severity: normal Keywords: passwd glibc free crash aborted feeds gdb backtrace strace
Cc: Blocked By:
Blocking: Estimated Completion (week):
HasPatchForReview: no PatchReviewResult:
Reproducible: always

Description

1) Images: daily , testing, 2009.01.20

testing-om-gta02-20090120.uImage.bin
openmoko-testing-om-gta02.rootfs.jffs2

2) Description:
as an unprivileged user, passwd command crashes when changing password to new one, which is longer than 8 characters. Seems to be NOT affected when calling passwd as root.

3) Steps to reproduce:
root@om-gta02:~# adduser test
root@om-gta02:~# passwd test
Changing password for test
Enter the new password (minimum of 5, maximum of 8 characters)
Please use a combination of upper and lower case letters and numbers.
Enter new password: /* I have entered password of 10 characters length */
Re-enter new password: /* I have entered password of 10 characters length */
Password changed.
root@om-gta02:~# su test /* OR root@om-gta02:~# su - test */
test@om-gta02:~$ passwd
Changing password for test
Old password:
Enter the new password (minimum of 5, maximum of 8 characters)
Please use a combination of upper and lower case letters and numbers.
Enter new password: /* I have entered password of 10 characters length */
* glibc detected * passwd: free(): invalid next size (fast): 0x0001f878 *
Aborted

( Above is pretty self explaining, but well, if you guys really need this... here are next steps.)
4) Current result
Currently unprivileged user is unable to change his/her password

5) Expected result
Unprivileged user is expected to be able to change his/her password

6) Reproducible
Always

Attachements:

gdb-passwd.txt
list_installed.txt
opkg
strace-passwd.txt

./opkg:

all-feed.conf
arch.conf
armv4t-feed.conf
Multiverse-feed.conf
navit-feed.conf
om-gta02-feed.conf

P.S.I couldn't find info what to fill into "Blocking" "CC"(my email?) and "Blocked by"
--
Kind regards
LeadMan?

Attachments

passwd.tar.gz (9.8 KB) - added by leadman 9 years ago.
Tarball, contains files produced during attempt of debugging

Change History

Changed 9 years ago by leadman

Tarball, contains files produced during attempt of debugging

comment:1 Changed 9 years ago by roh

  • Owner changed from julian_chu to Nytowl

maintainer change

comment:2 Changed 9 years ago by Nytowl

  • Status changed from new to closed
  • Resolution set to worksforme

Works in unstable and testing

comment:3 Changed 9 years ago by Nytowl

Should have been works in unstable and experimental

comment:4 Changed 9 years ago by leadman

At the moment of reporting i was using testing (as described in step 1) I will update&upgrade tomorrow and check it again.

comment:5 Changed 9 years ago by leadman

I have tested this again, this bug is still present in testing. Checked at testing, "opkg update" on 2009-03-20 CET. Thus should be reopened.
(Why am I not allowed to change my own ticket's status?).
Result below:

root@ESP-PATBEN-LIN:~# ssh test@om
test@om's password: /* entered users old passwd*/
test@om-gta02:~$
test@om-gta02:~$ passwd
Changing password for test
Old password: /* entered users old passwd*/
Enter the new password (minimum of 5, maximum of 8 characters)
Please use a combination of upper and lower case letters and numbers.
Enter new password: /* entered string 'dlscow48' */
* glibc detected * passwd: free(): invalid next size (fast): 0x0001f878 *
Aborted
test@om-gta02:~$ uname -a
Linux om-gta02 2.6.29-rc2 #1 PREEMPT Thu Mar 19 17:13:24 CET 2009 armv4tl unknown

Let me know if you need additional comment.
Regards, LeadMan?.

Note: See TracTickets for help on using tickets.