Ubuntu
bacula package

package bacula-director-sqlite3 2.4.0-1ubuntu1 [modified: usr/sbin/bacula-dir usr/sbin/dbcheck] failed to install/upgrade:

Bug #246298 reported by Moti Ochayun on 2008-07-07

Affects		Status	Importance	Assigned to	Milestone
	Bacula	Unknown	Unknown	auto-bugs.bacula.org #1138
	bacula (Ubuntu)	Fix Released	High	Chuck Short	Ubuntu intrepid-alpha-6

Bug Description

Binary package hint: bacula

i did upgrade and i get the error

ProblemType: Package
Architecture: i386
Date: Mon Jul 7 18:29:05 2008
DistroRelease: Ubuntu 8.10
ErrorMessage:
ErrorMessage: subprocess post-installation script returned error exit status 1
Package: bacula-director-sqlite3 2.4.0-1ubuntu1 [modified: usr/sbin/bacula-dir usr/sbin/dbcheck]
PackageArchitecture: i386
SourcePackage: bacula
Title: package bacula-director-sqlite3 2.4.0-1ubuntu1 [modified: usr/sbin/bacula-dir usr/sbin/dbcheck] failed to install/upgrade:
Uname: Linux 2.6.26-3-generic i686

Tags:

Revision history for this message

Moti Ochayun (moti) wrote on 2008-07-07:

Dependencies.txt Edit (3.4 KiB, text/plain; charset="utf-8")
VarLogDistupgradeAptlog.gz Edit (21.0 KiB, application/x-gzip)
VarLogDistupgradeApttermlog.gz Edit (6.4 KiB, application/x-gzip)

Revision history for this message

Pascal De Vuyst (pascal-devuyst) wrote on 2008-07-21:

Download full text (5.4 KiB)

That's because bacula-director-sqlite3 2.4.0-1ubuntu1 fails to start:

Setting up bacula-director- ...done.
* Starting Bacula Director:
*** buffer overflow detected ***: /usr/sbin/ /lib/tls/i686/cmov/libc.so.i686/cmov/libc.so.bacula-dir[0x80b7ca9]
bacula-dir[0x804db53]
i686/cmov/libc.so.bacula-dir(__gxx_ 08047000-080ef000 r-xp 00000000 08:02 657354 080ef000-080f0000 r--p 000a7000 08:02 657354 080f0000-080f4000 rw-p 000a8000 08:02 657354 080f4000-080f5000 rw-p 080f4000 00:00 0
09e68000-09e89000 rw-p 09e68000 00:00 0 4654e000-46568000 r-xp 00000000 08:02 1572919 46568000-46569000 r--p 0001a000 08:02 1572919 46569000-4656a000 rw-p 0001b000 08:02 1572919 4656c000-466c4000 r-xp 00000000 08:02 1605661 466c4000-466c6000 r--p 00158000 08:02 1605661 466c6000-466c7000 rw-p 0015a000 08:02 1605661 466c7000-466ca000 rw-p 466c7000 00:00 0
466cc000-466ce000 r-xp 00000000 08:02 1605774 466ce000-466cf000 r--p 00001000 08:02 1605774 466cf000-466d0000 rw-p 00002000 08:02 1605774 466d2000-466f6000 r-xp 00000000 08:02 1605783 466f6000-466f7000 r--p 00023000 08:02 1605783 466f7000-466f8000 rw-p 00024000 08:02 1605783 466fa000-4670f000 r-xp 00000000 08:02 1605700 4670f000-46710000 r--p 00014000 08:02 1605700 46710000-46711000 rw-p 00015000 08:02 1605700 46711000-46713000 rw-p 46711000 00:00 0
4695a000-46961000 r-xp 00000000 08:02 1605781 46961000-46962000 r--p 00007000 08:02 1605781 46962000-46963000 rw-p 00008000 08:02 1605781 4735d000-47372000 r-xp 00000000 08:02 1605671 47372000-47373000 r--p 00014000 08:02 1605671 47373000-47374000 rw-p 00015000 08:02 1605671 47374000-47376000 rw-p 47374000 00:00 0
47499000-4749b000 r-xp 00000000 08:02 1605811 4749b000-4749c000 r--p 00001000 08:02 1605811 4749c000-4749d000 rw-p 00002000 08:02 1605811 47518000-4751f000 r-xp 00000000 08:02 1572990 4751f000-47521000 rw-p 00006000 08:02 1572990 />sqlite3 (2.4.0-1ubuntu1) ...
/>bacula-dir terminated
/>6(__fortify_fail+0x48)[0x46666388]
/>6[0x466644b0]
/> /> />6(__libc_start_main+0xe5)[0x46582685]
/>personality_v0+0x13d)[0x804b8e1]
/usr/sbin/bacula-dir
/usr/sbin/bacula-dir
/usr/sbin/bacula-dir
[heap]
/lib/ld-2.8.90.so
/lib/ld-2.8.90.so
/lib/ld-2.8.90.so
/lib/tls/i686/cmov/libc-2.8.90.so
/lib/tls/i686/cmov/libc-2.8.90.so
/lib/tls/i686/cmov/libc-2.8.90.so
/lib/tls/i686/cmov/libdl-2.8.90.so
/lib/tls/i686/cmov/libdl-2.8.90.so
/lib/tls/i686/cmov/libdl-2.8.90.so
/lib/tls/i686/cmov/libm-2.8.90.so
/lib/tls/i686/cmov/libm-2.8.90.so
/lib/tls/i686/cmov/libm-2.8.90.so
/lib/tls/i686/cmov/libpthread-2.8.90.so
/lib/tls/i686/cmov/libpthread-2.8.90.so
/lib/tls/i686/cmov/libpthread-2.8.90.so
/lib/tls/i686/cmov/librt-2.8.90.so
/lib/tls/i686/cmov/librt-2.8.90.so
/lib/tls/i686/cmov/librt-2.8.90.so
/lib/tls/i686/cmov/libnsl-2.8.90.so
/lib/tls/i686/cmov/libnsl-2.8.90.so
/lib/tls/i686/cmov/libnsl-2.8.90.so
/lib/tls/i686/cmov/libutil-2.8.90.so
/lib/tls/i686/cmov/libutil-2.8.90.so
/lib/tls/i686/cmov/libutil-2.8.90.so
/lib/libwrap.so.0.7.6
/lib/...

That's because bacula-director-sqlite3 2.4.0-1ubuntu1 fails to start:

Setting up bacula-director-sqlite3 (2.4.0-1ubuntu1) ...
 * Stopping Bacula Director: 
   ...done.
 * Starting Bacula Director:
*** buffer overflow detected ***: /usr/sbin/bacula-dir terminated
======= Backtrace: =========
/lib/tls/i686/cmov/libc.so.6(__fortify_fail+0x48)[0x46666388]
/lib/tls/i686/cmov/libc.so.6[0x466644b0]
/usr/sbin/bacula-dir[0x80b7ca9]
/usr/sbin/bacula-dir[0x804db53]
/lib/tls/i686/cmov/libc.so.6(__libc_start_main+0xe5)[0x46582685]
/usr/sbin/bacula-dir(__gxx_personality_v0+0x13d)[0x804b8e1]
======= Memory map: ========
08047000-080ef000 r-xp 00000000 08:02 657354     /usr/sbin/bacula-dir
080ef000-080f0000 r--p 000a7000 08:02 657354     /usr/sbin/bacula-dir
080f0000-080f4000 rw-p 000a8000 08:02 657354     /usr/sbin/bacula-dir
080f4000-080f5000 rw-p 080f4000 00:00 0 
09e68000-09e89000 rw-p 09e68000 00:00 0          [heap]
4654e000-46568000 r-xp 00000000 08:02 1572919    /lib/ld-2.8.90.so
46568000-46569000 r--p 0001a000 08:02 1572919    /lib/ld-2.8.90.so
46569000-4656a000 rw-p 0001b000 08:02 1572919    /lib/ld-2.8.90.so
4656c000-466c4000 r-xp 00000000 08:02 1605661    /lib/tls/i686/cmov/libc-2.8.90.so
466c4000-466c6000 r--p 00158000 08:02 1605661    /lib/tls/i686/cmov/libc-2.8.90.so
466c6000-466c7000 rw-p 0015a000 08:02 1605661    /lib/tls/i686/cmov/libc-2.8.90.so
466c7000-466ca000 rw-p 466c7000 00:00 0 
466cc000-466ce000 r-xp 00000000 08:02 1605774    /lib/tls/i686/cmov/libdl-2.8.90.so
466ce000-466cf000 r--p 00001000 08:02 1605774    /lib/tls/i686/cmov/libdl-2.8.90.so
466cf000-466d0000 rw-p 00002000 08:02 1605774    /lib/tls/i686/cmov/libdl-2.8.90.so
466d2000-466f6000 r-xp 00000000 08:02 1605783    /lib/tls/i686/cmov/libm-2.8.90.so
466f6000-466f7000 r--p 00023000 08:02 1605783    /lib/tls/i686/cmov/libm-2.8.90.so
466f7000-466f8000 rw-p 00024000 08:02 1605783    /lib/tls/i686/cmov/libm-2.8.90.so
466fa000-4670f000 r-xp 00000000 08:02 1605700    /lib/tls/i686/cmov/libpthread-2.8.90.so
4670f000-46710000 r--p 00014000 08:02 1605700    /lib/tls/i686/cmov/libpthread-2.8.90.so
46710000-46711000 rw-p 00015000 08:02 1605700    /lib/tls/i686/cmov/libpthread-2.8.90.so
46711000-46713000 rw-p 46711000 00:00 0 
4695a000-46961000 r-xp 00000000 08:02 1605781    /lib/tls/i686/cmov/librt-2.8.90.so
46961000-46962000 r--p 00007000 08:02 1605781    /lib/tls/i686/cmov/librt-2.8.90.so
46962000-46963000 rw-p 00008000 08:02 1605781    /lib/tls/i686/cmov/librt-2.8.90.so
4735d000-47372000 r-xp 00000000 08:02 1605671    /lib/tls/i686/cmov/libnsl-2.8.90.so
47372000-47373000 r--p 00014000 08:02 1605671    /lib/tls/i686/cmov/libnsl-2.8.90.so
47373000-47374000 rw-p 00015000 08:02 1605671    /lib/tls/i686/cmov/libnsl-2.8.90.so
47374000-47376000 rw-p 47374000 00:00 0 
47499000-4749b000 r-xp 00000000 08:02 1605811    /lib/tls/i686/cmov/libutil-2.8.90.so
4749b000-4749c000 r--p 00001000 08:02 1605811    /lib/tls/i686/cmov/libutil-2.8.90.so
4749c000-4749d000 rw-p 00002000 08:02 1605811    /lib/tls/i686/cmov/libutil-2.8.90.so
47518000-4751f000 r-xp 00000000 08:02 1572990    /lib/libwrap.so.0.7.6
4751f000-47521000 rw-p 00006000 08:02 1572990    /lib/libwrap.so.0.7.6
49e1d000-49e29000 r-xp 00000000 08:02 1572890    /lib/libgcc_s.so.1
49e29000-49e2a000 r--p 0000b000 08:02 1572890    /lib/libgcc_s.so.1
49e2a000-49e2b000 rw-p 0000c000 08:02 1572890    /lib/libgcc_s.so.1
49e2d000-49f13000 r-xp 00000000 08:02 657344     /usr/lib/libstdc++.so.6.0.10
49f13000-49f17000 r--p 000e6000 08:02 657344     /usr/lib/libstdc++.so.6.0.10
49f17000-49f18000 rw-p 000ea000 08:02 657344     /usr/lib/libstdc++.so.6.0.10
49f18000-49f1e000 rw-p 49f18000 00:00 0 
49f20000-4a030000 r-xp 00000000 08:02 657261     /usr/lib/libpython2.5.so.1.0
4a030000-4a031000 r--p 0010f000 08:02 657261     /usr/lib/libpython2.5.so.1.0
4a031000-4a056000 rw-p 00110000 08:02 657261     /usr/lib/libpython2.5.so.1.0
4a056000-4a05c000 rw-p 4a056000 00:00 0 
4a396000-4a404000 r-xp 00000000 08:02 656998     /usr/lib/libsqlite3.so.0.8.6
4a404000-4a405000 r--p 0006d000 08:02 656998     /usr/lib/libsqlite3.so.0.8.6
4a405000-4a406000 rw-p 0006e000 08:02 656998     /usr/lib/libsqlite3.so.0.8.6
b7df9000-b7dfa000 rw-p b7df9000 00:00 0 
b7dfa000-b7e39000 r--p 00000000 08:02 802818     /usr/lib/locale/en_US.utf8/LC_CTYPE
b7e39000-b7f1a000 r--p 00000000 08:02 803002     /usr/lib/locale/en_US.utf8/LC_COLLATE
b7f1a000-b7f1e000 rw-p b7f1a000 00:00 0 
b7f22000-b7f23000 r--p 00000000 08:02 803057     /usr/lib/locale/en_US.utf8/LC_NUMERIC
b7f23000-b7f24000 r--p 00000000 08:02 802957     /usr/lib/locale/en_US.utf8/LC_TIME
b7f24000-b7f25000 r--p 00000000 08:02 802959     /usr/lib/locale/en_US.utf8/LC_MONETARY
b7f25000-b7f26000 r--p 00000000 08:02 803073     /usr/lib/locale/en_US.utf8/LC_MESSAGES/SYS_LC_MESSAGES
b7f26000-b7f27000 r--p 00000000 08:02 803091     /usr/lib/locale/en_US.utf8/LC_PAPER
b7f27000-b7f28000 r--p 00000000 08:02 803108     /usr/lib/locale/en_US.utf8/LC_NAME
b7f28000-b7f29000 r--p 00000000 08:02 802960     /usr/lib/locale/en_US.utf8/LC_ADDRESS
b7f29000-b7f2a000 r--p 00000000 08:02 802961     /usr/lib/locale/en_US.utf8/LC_TELEPHONE
b7f2a000-b7f2b000 r--p 00000000 08:02 802962     /usr/lib/locale/en_US.utf8/LC_MEASUREMENT
b7f2b000-b7f32000 r--s 00000000 08:02 674290     /usr/lib/gconv/gconv-modules.cache
b7f32000-b7f33000 r--p 00000000 08:02 802964     /usr/lib/locale/en_US.utf8/LC_IDENTIFICATION
b7f33000-b7f35000 rw-p b7f33000 00:00 0 
b7f35000-b

Changed in bacula:
status:	New → Confirmed

Revision history for this message

Chuck Short (zulcss) wrote on 2008-08-19:

This has been fixed already in a recent upload.

Thanks
chuck

Changed in bacula:
status:	Confirmed → Fix Released

Revision history for this message

Kees Cook (kees) wrote on 2008-09-04:

The crash isn't fixed -- it's just hidden. We need to drill down and find the root-cause of the overflow.

Changed in bacula:
assignee:	nobody → zul
importance:	Undecided → High
milestone:	none → intrepid-alpha-6
status:	Fix Released → Confirmed
assignee:	zul → zulcss

Revision history for this message

Kern Sibbald (kern) wrote on 2008-09-05:

If Fortify source is turned of the problem *is* fixed and not simply hidden.

The output indicates that that this crash is due to the fact that Bacula was built with -DFORTIFY_SOURCE=2 (please check spelling). The glibc code that implements this feature according to the authors of the code may generate false positives, and that is indeed the case here. The code reports a buffer overflow where one does *not* exist.

This problem is easily detected because after building Bacula and running any test case, it crashes the first and every time.

Solution:
1. Build Bacula without the fortify source option. It is unnecessary, a flawed implementation, and Bacula does its own checking for these things.

2. Please always run the regression scripts after building a new version.

Best regards,

Kern

Revision history for this message

Kern Sibbald (kern) wrote on 2008-09-05:

I would recommend to the packagers to move up to Bacula version 2.4.2 as quickly as possible. Versions 2.4.0 and 2.4.1 had a number of important problems concerning mounting tape volumes particularly in manual mount situations (non-autochanger). Version 2.4.2 is a "critical" bug fix to versions 2.4.0 and 2.4.1 that is completely compatible with no major changes other than bug fixes and has proved quite stable.

Regards,

Kern

Kees Cook (kees) on 2008-09-05

Changed in bacula:
status:	Confirmed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Bug attachments

Add attachment

Remote bug watches

auto-bugs.bacula.org #1138
[closed: not a bug] Edit

Bug watches keep track of this bug in other bug trackers.

Ubuntubacula package

package bacula-director-sqlite3 2.4.0-1ubuntu1 [modified: usr/sbin/bacula-dir usr/sbin/dbcheck] failed to install/upgrade:

Bug Description

Other bug subscribers

Bug attachments

Remote bug watches

Ubuntu
bacula package