Mailing List Archive

ClamAV SegFault on Reload
Hi,

I've been running the Development Version of ClamAV for a while, and the
only problem I've encountered is that sometimes when it's instructed to
reload the databases (clamscan --reload) it SegFaults:

Jun 18 15:25:04 Boomer kernel: clamd[3414]: segfault at 1de2 ip 00007f618669d345 sp 00007ffe57c51d28 error 4 in libclamav.so.7.1.1[7f61865e0000+1b7000]
Jun 19 01:44:17 Boomer kernel: clamd[3423]: segfault at 15f0d1 ip 00007f30e1010345 sp 00007ffdb449ccb8 error 4 in libclamav.so.7.1.1[7f30e0f53000+1b7000]
Jun 30 22:41:08 Boomer kernel: clamd[3723]: segfault at 748334 ip 00007f16a9c04066 sp 00007ffc68399d80 error 4 in libclamav.so.7.1.1[7f16a9bca000+1cf000]

To get more information I installed gdb, and ran it like this:

root@Boomer [ ~ ]# gdb /usr/sbin/clamd
gdb) run --debug -c /etc/clamav/clamd.conf
Starting program: /usr/sbin/clamd --debug -c /etc/clamav/clamd.conf
warning: Unable to find libthread_db matching inferior's thread library, thread debugging will not be available.
LibClamAV debug: Initialized devel-clamav-0.99-beta1-683-g5a0b148b4 engine
LibClamAV debug: Initializing phishcheck module
<snip>


After a while I got this: (Along with a Core Dump)

$Received POLLIN|POLLHUP on fd 7
$fds_poll_recv: timeout after 5 seconds
$Received POLLIN|POLLHUP on fd 11
$got command RELOAD (7, 2), argument:
$Receive thread: closing conn (FD 11), group finished
$Consumed entire command

Thread 1 "clamd" received signal SIGSEGV, Segmentation fault.
mpool_free (mp=0x7ffff7fa6000, ptr=0x100000000) at mpool.c:698
698 f = allocbase_fromfrag(f);
(gdb)
(gdb)
(gdb)
(gdb) bt
#0 mpool_free (mp=0x7ffff7fa6000, ptr=0x100000000) at mpool.c:698
#1 0x00007ffff7a2c038 in hm_free (root=root@entry=0x7ffff5289168) at matcher-hash.c:315
#2 0x00007ffff7a3d242 in cl_engine_free (engine=engine@entry=0x6b9b40) at readdb.c:4989
#3 0x000000000040e65d in reload_db (ret=<synthetic pointer>, do_check=0, opts=0x62e010, dboptions=8202, engine=0x6b9b40) at server-th.c:197
#4 recvloop_th (socketds=0x6bbdc0, nsockets=2, engine=0x6b9b40, dboptions=dboptions@entry=8202, opts=0x62e010) at server-th.c:1502
#5 0x0000000000405aaa in main (argc=<optimized out>, argv=<optimized out>) at clamd.c:800
(gdb)

Can you use this information for anything?

Any other commands I could run to gather more info?

Best Regards

Michael

System Info:

Dist: LFS-8.0 64-Bit
Kernel: 4.11.7
GCC-6.3.0
ClamAV devel-clamav-0.99-beta1-683-g5a0b148b4/23529

root@Boomer [ ~ ]# ldd /usr/sbin/clamd
linux-vdso.so.1 (0x00007fff6d116000)
libclamav.so.7 => /usr/lib/libclamav.so.7 (0x00007f5ed4f1c000)
libxml2.so.2 => /usr/lib/libxml2.so.2 (0x00007f5ed4bb7000)
liblzma.so.5 => /lib/liblzma.so.5 (0x00007f5ed4991000)
libbz2.so.1.0 => /lib/libbz2.so.1.0 (0x00007f5ed4781000)
libltdl.so.7 => /usr/lib/libltdl.so.7 (0x00007f5ed4577000)
libdl.so.2 => /lib/libdl.so.2 (0x00007f5ed4373000)
libssl.so.1.0.0 => /usr/lib/libssl.so.1.0.0 (0x00007f5ed4100000)
libcrypto.so.1.0.0 => /usr/lib/libcrypto.so.1.0.0 (0x00007f5ed3cab000)
libz.so.1 => /lib/libz.so.1 (0x00007f5ed3a8f000)
libpcre2-8.so.0 => /usr/lib/libpcre2-8.so.0 (0x00007f5ed3843000)
libm.so.6 => /lib/libm.so.6 (0x00007f5ed3530000)
libpthread.so.0 => /lib/libpthread.so.0 (0x00007f5ed3312000)
libc.so.6 => /lib/libc.so.6 (0x00007f5ed2f6e000)
/lib64/ld-linux-x86-64.so.2 (0x00007f5ed5304000)
root@Boomer [ ~ ]#


_______________________________________________
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net

http://www.clamav.net/contact.html#ml
Re: ClamAV SegFault on Reload - 0.99.3-beta1 [ In reply to ]
Hi,

The Clamd process still SegFault on reload after upgrading to 0.99.3-beta1.

Sep 21 16:42:49 Boomer kernel: clamd[4208]: segfault at 7f27d5dd7780 ip
00007f27c56650b2 sp 00007ffd818b8280 error 4 in
libclamav.so.7.1.1[7f27c562b000+1cf000]
Sep 21 21:39:25 Boomer kernel: clamd[8589]: segfault at 14cf977 ip
00007f64092b7086 sp 00007ffc215e33c0 error 4 in
libclamav.so.7.1.1[7f640927d000+1cf000]
Sep 22 10:39:26 Boomer kernel: clamd[28493]: segfault at 15f56e6 ip
00007fbcbed4c086 sp 00007ffd451b9ff0 error 4 in
libclamav.so.7.1.1[7fbcbed12000+1cf000]

Anything I can do to help narrowing down on the fault?

Best regards
Michael


On 07/03/2017 12:50 PM, Michael D. wrote:
> Hi,
>
> I've been running the Development Version of ClamAV for a while, and
> the only problem I've encountered is that sometimes when it's
> instructed to reload the databases (clamscan --reload) it SegFaults:
>
> Jun 18 15:25:04 Boomer kernel: clamd[3414]: segfault at 1de2 ip
> 00007f618669d345 sp 00007ffe57c51d28 error 4 in
> libclamav.so.7.1.1[7f61865e0000+1b7000]
> Jun 19 01:44:17 Boomer kernel: clamd[3423]: segfault at 15f0d1 ip
> 00007f30e1010345 sp 00007ffdb449ccb8 error 4 in
> libclamav.so.7.1.1[7f30e0f53000+1b7000]
> Jun 30 22:41:08 Boomer kernel: clamd[3723]: segfault at 748334 ip
> 00007f16a9c04066 sp 00007ffc68399d80 error 4 in
> libclamav.so.7.1.1[7f16a9bca000+1cf000]
>
> To get more information I installed gdb, and ran it like this:
>
> root@Boomer [ ~ ]# gdb /usr/sbin/clamd
> gdb) run --debug -c /etc/clamav/clamd.conf
> Starting program: /usr/sbin/clamd --debug -c /etc/clamav/clamd.conf
> warning: Unable to find libthread_db matching inferior's thread
> library, thread debugging will not be available.
> LibClamAV debug: Initialized devel-clamav-0.99-beta1-683-g5a0b148b4
> engine
> LibClamAV debug: Initializing phishcheck module
> <snip>
>
>
> After a while I got this: (Along with a Core Dump)
>
> $Received POLLIN|POLLHUP on fd 7
> $fds_poll_recv: timeout after 5 seconds
> $Received POLLIN|POLLHUP on fd 11
> $got command RELOAD (7, 2), argument:
> $Receive thread: closing conn (FD 11), group finished
> $Consumed entire command
>
> Thread 1 "clamd" received signal SIGSEGV, Segmentation fault.
> mpool_free (mp=0x7ffff7fa6000, ptr=0x100000000) at mpool.c:698
> 698 f = allocbase_fromfrag(f);
> (gdb)
> (gdb)
> (gdb)
> (gdb) bt
> #0 mpool_free (mp=0x7ffff7fa6000, ptr=0x100000000) at mpool.c:698
> #1 0x00007ffff7a2c038 in hm_free (root=root@entry=0x7ffff5289168) at
> matcher-hash.c:315
> #2 0x00007ffff7a3d242 in cl_engine_free
> (engine=engine@entry=0x6b9b40) at readdb.c:4989
> #3 0x000000000040e65d in reload_db (ret=<synthetic pointer>,
> do_check=0, opts=0x62e010, dboptions=8202, engine=0x6b9b40) at
> server-th.c:197
> #4 recvloop_th (socketds=0x6bbdc0, nsockets=2, engine=0x6b9b40,
> dboptions=dboptions@entry=8202, opts=0x62e010) at server-th.c:1502
> #5 0x0000000000405aaa in main (argc=<optimized out>, argv=<optimized
> out>) at clamd.c:800
> (gdb)
>
> Can you use this information for anything?
>
> Any other commands I could run to gather more info?
>
> Best Regards
>
> Michael
>
> System Info:
>
> Dist: LFS-8.0 64-Bit
> Kernel: 4.11.7
> GCC-6.3.0
> ClamAV devel-clamav-0.99-beta1-683-g5a0b148b4/23529
>
> root@Boomer [ ~ ]# ldd /usr/sbin/clamd
> linux-vdso.so.1 (0x00007fff6d116000)
> libclamav.so.7 => /usr/lib/libclamav.so.7 (0x00007f5ed4f1c000)
> libxml2.so.2 => /usr/lib/libxml2.so.2 (0x00007f5ed4bb7000)
> liblzma.so.5 => /lib/liblzma.so.5 (0x00007f5ed4991000)
> libbz2.so.1.0 => /lib/libbz2.so.1.0 (0x00007f5ed4781000)
> libltdl.so.7 => /usr/lib/libltdl.so.7 (0x00007f5ed4577000)
> libdl.so.2 => /lib/libdl.so.2 (0x00007f5ed4373000)
> libssl.so.1.0.0 => /usr/lib/libssl.so.1.0.0 (0x00007f5ed4100000)
> libcrypto.so.1.0.0 => /usr/lib/libcrypto.so.1.0.0
> (0x00007f5ed3cab000)
> libz.so.1 => /lib/libz.so.1 (0x00007f5ed3a8f000)
> libpcre2-8.so.0 => /usr/lib/libpcre2-8.so.0 (0x00007f5ed3843000)
> libm.so.6 => /lib/libm.so.6 (0x00007f5ed3530000)
> libpthread.so.0 => /lib/libpthread.so.0 (0x00007f5ed3312000)
> libc.so.6 => /lib/libc.so.6 (0x00007f5ed2f6e000)
> /lib64/ld-linux-x86-64.so.2 (0x00007f5ed5304000)
> root@Boomer [ ~ ]#
>
>
> _______________________________________________
> http://lurker.clamav.net/list/clamav-devel.html
> Please submit your patches to our Bugzilla: http://bugs.clamav.net
>
> http://www.clamav.net/contact.html#ml

_______________________________________________
http://lurker.clamav.net/list/clamav-devel.html
Please submit your patches to our Bugzilla: http://bugs.clamav.net

http://www.clamav.net/contact.html#ml