*** glibc detected *** vpnc: free(): invalid pointer: 0x0000000000626048 *** ======= Backtrace: ========= /lib/libc.so.6[0x7f7371cf54e8] /lib/libc.so.6(cfree+0x76)[0x7f7371cf75f6] vpnc[0x4033ea] vpnc[0x403572] vpnc[0x410b97] /lib/libc.so.6(__libc_start_main+0xfa)[0x7f7371c9f21a] vpnc[0x403069] ======= Memory map: ======== 00400000-0041d000 r-xp 00000000 fd:07 269450 /usr/sbin/vpnc 0061c000-0061d000 r--p 0001c000 fd:07 269450 /usr/sbin/vpnc 0061d000-0061e000 rw-p 0001d000 fd:07 269450 /usr/sbin/vpnc 0061e000-00643000 rw-p 0061e000 00:00 0 [heap] 7f736c000000-7f736c021000 rw-p 7f736c000000 00:00 0 7f736c021000-7f7370000000 ---p 7f736c021000 00:00 0 7f7371662000-7f7371678000 r-xp 00000000 fd:07 160172 /lib64/libgcc_s.so.1 7f7371678000-7f7371877000 ---p 00016000 fd:07 160172 /lib64/libgcc_s.so.1 7f7371877000-7f7371878000 r--p 00015000 fd:07 160172 /lib64/libgcc_s.so.1 7f7371878000-7f7371879000 rw-p 00016000 fd:07 160172 /lib64/libgcc_s.so.1 7f7371879000-7f737187b000 r-xp 00000000 fd:07 153808 /lib64/libdl-2.7.so 7f737187b000-7f7371a7b000 ---p 00002000 fd:07 153808 /lib64/libdl-2.7.so 7f7371a7b000-7f7371a7c000 r--p 00002000 fd:07 153808 /lib64/libdl-2.7.so 7f7371a7c000-7f7371a7d000 rw-p 00003000 fd:07 153808 /lib64/libdl-2.7.so 7f7371a7d000-7f7371a80000 r-xp 00000000 fd:07 30364 /usr/lib64/libgpg-error.so.0.4.0 7f7371a80000-7f7371c7f000 ---p 00003000 fd:07 30364 /usr/lib64/libgpg-error.so.0.4.0 7f7371c7f000-7f7371c80000 r--p 00002000 fd:07 30364 /usr/lib64/libgpg-error.so.0.4.0 7f7371c80000-7f7371c81000 rw-p 00003000 fd:07 30364 /usr/lib64/libgpg-error.so.0.4.0 7f7371c81000-7f7371dcc000 r-xp 00000000 fd:07 153787 /lib64/libc-2.7.so 7f7371dcc000-7f7371fcb000 ---p 0014b000 fd:07 153787 /lib64/libc-2.7.so 7f7371fcb000-7f7371fcf000 r--p 0014a000 fd:07 153787 /lib64/libc-2.7.so 7f7371fcf000-7f7371fd0000 rw-p 0014e000 fd:07 153787 /lib64/libc-2.7.so 7f7371fd0000-7f7371fd5000 rw-p 7f7371fd0000 00:00 0 7f7371fd5000-7f7372133000 r-xp 00000000 fd:07 30579 /usr/lib64/libcrypto.so.0.9.8 7f7372133000-7f7372332000 ---p 0015e000 fd:07 30579 /usr/lib64/libcrypto.so.0.9.8 7f7372332000-7f7372340000 r--p 0015d000 fd:07 30579 /usr/lib64/libcrypto.so.0.9.8 7f7372340000-7f7372357000 rw-p 0016b000 fd:07 30579 /usr/lib64/libcrypto.so.0.9.8 7f7372357000-7f737235a000 rw-p 7f7372357000 00:00 0 7f737235a000-7f73723c3000 r-xp 00000000 fd:07 30910 /usr/lib64/libgcrypt.so.11.4.4 7f73723c3000-7f73725c3000 ---p 00069000 fd:07 30910 /usr/lib64/libgcrypt.so.11.4.4 7f73725c3000-7f73725c4000 r--p 00069000 fd:07 30910 /usr/lib64/libgcrypt.so.11.4.4 7f73725c4000-7f73725c6000 rw-p 0006a000 fd:07 30910 /usr/lib64/libgcrypt.so.11.4.4 7f73725c6000-7f73725e2000 r-xp 00000000 fd:07 153810 /lib64/ld-2.7.so 7f73727bc000-7f73727bf000 rw-p 7f73727bc000 00:00 0 7f73727db000-7f73727dc000 rw-p 7f73727db000 00:00 0 7f73727dc000-7f73727e0000 rw-p 7f73727dc000 00:00 0 7f73727e0000-7f73727e2000 rw-p 7f73727e0000 00:00 0 7f73727e2000-7f73727e3000 r--p 0001c000 fd:07 153810 /lib64/ld-2.7.so 7f73727e3000-7f73727e4000 rw-p 0001d000 fd:07 153810 /lib64/ld-2.7.so 7fff7a7ce000-7fff7a7e3000 rw-p 7ffffffea000 00:00 0 [stack] 7fff7a7fe000-7fff7a800000 r-xp 7fff7a7fe000 00:00 0 [vdso] ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0 [vsyscall] Aborted (core dumped) Reproducible: Always Steps to Reproduce: 1. emerge -1v vpnc 2. run vpnc Actual Results: core dump with above error Expected Results: Should run line 0.5.1-r1
Please post your `emerge --info' too.
# emerge --info Portage 2.1.4.4 (default-linux/amd64/2006.1/desktop, gcc-4.3.1, glibc-2.7-r2, 2.6.25.7 x86_64) ================================================================= System uname: 2.6.25.7 x86_64 AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ Timestamp of tree: Mon, 23 Jun 2008 02:45:02 +0000 ccache version 2.4 [disabled] app-shells/bash: 3.2_p39 dev-java/java-config: 1.3.7, 2.1.6 dev-lang/python: 2.4.4-r13 dev-python/pycrypto: 2.0.1-r6 dev-util/ccache: 2.4-r7 sys-apps/baselayout: 1.12.12 sys-apps/sandbox: 1.2.18.1-r2 sys-devel/autoconf: 2.13, 2.62 sys-devel/automake: 1.4_p6, 1.5, 1.6.3, 1.7.9-r1, 1.8.5-r3, 1.9.6-r2, 1.10.1-r1 sys-devel/binutils: 2.18-r1 sys-devel/gcc-config: 1.4.0-r4 sys-devel/libtool: 1.5.26 virtual/os-headers: 2.6.23-r3 ACCEPT_KEYWORDS="amd64 ~amd64" CBUILD="x86_64-pc-linux-gnu" CFLAGS="-O2 -march=k8 -msse2 -msse3 -mmmx -m3dnow -msse -fforce-addr -fomit-frame-pointer -pipe -ftree-vectorize -frename-registers -fweb" CHOST="x86_64-pc-linux-gnu" CONFIG_PROTECT="/etc /etc/hibernate /etc/udev/rules.d /etc/vmware /usr/kde/3.5/env /usr/kde/3.5/share/config /usr/kde/3.5/shutdown /usr/share/config /usr /share/hddtemp" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/env.d/java/ /etc/fonts/fonts.conf /etc/gconf /etc/revdep-rebuild /etc/splash /etc/terminfo /etc/udev/rules.d" CXXFLAGS="-O2 -march=k8 -msse2 -msse3 -mmmx -m3dnow -msse -fforce-addr -fomit-frame-pointer -pipe -ftree-vectorize -frename-registers -fweb" DISTDIR="/usr/portage/distfiles" EMERGE_DEFAULT_OPTS="--nospinner" FEATURES="distlocks metadata-transfer nodoc parallel parallel-fetch sandbox sfperms strict unmerge-orphans userfetch" GENTOO_MIRRORS="http://gentoo.mirrors.easynews.com/linux/gentoo/ http://gentoo.llarian.net/ http://mirror.espri.arizona.edu/gentoo/" LDFLAGS="-Wl,-O1 -Wl,--enable-new-dtags -Wl,--as-needed" LINGUAS="en" MAKEOPTS="-j3" PKGDIR="/bin-packages/x64" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --compress --force --whole-file --delete --stats --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" PORTDIR_OVERLAY="/usr/local/portage" SYNC="rsync://rsync1.ca.gentoo.org/gentoo-portage" USE="X a52 aac acpi aim aio alsa amd64 audiofile bash-completion berkdb binary-drivers bzip2 cairo cdparanoia cdr cli composite cracklib crypt cscope css cups curl dar64 dbus dga directfb divx djbfft dri dts dv dvd dvdnav dvdr dvdread emboss emerald encode erandom evo exif expat faac faad fam fame fbcon fbsplash ffmpeg firefox flac freetype fuse gb gd gif gimp gimpprint glitz glut gmail gnome gnutls gphoto2 gpm gtk gtk+ gtk2 hal hddtemp hpn iconv ieee1394 imagemagick imap imlib isdnlog java javascript jikes jpeg jpeg2k kde kdeenablefinal kdehiddenvisibility kqemu lame lcms ldap libcaca libnotify libsamplerate lirc live lm_sensors logitech-mouse logrotate lzo lzw lzw-tiff mad matroska md5sum midi mikmod mjpeg mmap mmx2 mng moznopango mozsvg mp2 mp3 mp4 mpeg mplayer msn mudflap multislot musicbrainz nautilus ncurses nocd nodot nodrm nomalloccheck nopie nossp nptl nptlonly nsplugin nut nvidia ogg openexr opengl openmp oss pam pcre pda pdf perl pic png pop ppds pppd pvr pwdb python qt qt3 quicktime radio rar rdesktop readline reflection rplay rtc samba sasl sdl sensord server session slp smp sndfile spell spl sse3 ssl stencil-buffer stroke svg swat sysfs syslog tcl tcpd theora tiff tk truetype urandom usb userlocales v41 v4l v4l2 vim vnc vorbis wma wmf wmp x264 xanim xcomposite xft xine xml xml2 xorg xpm xprint xv xvid xvmc yv12 zeroconf zlib" ALSA_CARDS="hda-intel intel8x0 intel8x0m ens1371 emu10k1x" ALSA_PCM_PLUGINS="adpcm alaw asym copy dmix dshare dsnoop empty extplug file hooks iec958 ioplug ladspa lfloat linear meter mulaw multi null plug rate route share shm softvol" APACHE2_MODULES="actions alias auth_basic authn_alias authn_anon authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache dav dav_fs dav_lock deflate dir disk_cache env expires ext_filter file_cache filter headers include info log_config logio mem_cache mime mime_magic negotiation rewrite setenvif speling status unique_id userdir usertrack vhost_alias" CAMERAS="canon panasonic kodak minolta konica" ELIBC="glibc" INPUT_DEVICES="evdev keyboard mouse vmmouse" KERNEL="linux" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" LINGUAS="en" LIRC_DEVICES="hauppauge" USERLAND="GNU" VIDEO_CARDS="nvidia nv fbdev vesa vga vmware" Unset: CPPFLAGS, CTARGET, INSTALL_MASK, LANG, LC_ALL, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS
A run with CFLAGS=-g and FEATURES=nostrip: (gdb) bt #0 0x00007faa0a39cf85 in raise () from /lib/libc.so.6 #1 0x00007faa0a39e4a3 in abort () from /lib/libc.so.6 #2 0x00007faa0a3d9e48 in ?? () from /lib/libc.so.6 #3 0x00007faa0a3df4e8 in ?? () from /lib/libc.so.6 #4 0x00007faa0a3e15f6 in free () from /lib/libc.so.6 #5 0x000000000040422d in free_isakmp_payload (p=0x62bbe0) at isakmp-pkt.c:374 #6 0x0000000000404331 in free_isakmp_payload (p=0x62b7f0) at isakmp-pkt.c:407 #7 0x0000000000404331 in free_isakmp_payload (p=0x62b710) at isakmp-pkt.c:407 #8 0x0000000000404331 in free_isakmp_payload (p=0x62b660) at isakmp-pkt.c:407 #9 0x0000000000404331 in free_isakmp_payload (p=0x62b590) at isakmp-pkt.c:407 #10 0x0000000000404331 in free_isakmp_payload (p=0x62b370) at isakmp-pkt.c:407 #11 0x0000000000404353 in free_isakmp_packet (p=0x62b340) at isakmp-pkt.c:414 #12 0x0000000000412758 in do_phase1 (key_id=0x628ec0 "XXXXXXXXX", shared_key=0x628fb0 "not_telling_ya", s=0x7fff130d0510) at vpnc.c:2070 #13 0x0000000000416e40 in main (argc=2, argv=0x7fff130d0828) at vpnc.c:3245 (gdb) frame 5 #5 0x000000000040422d in free_isakmp_payload (p=0x62bbe0) at isakmp-pkt.c:374 374 free(p->u.cert.data); (gdb) p p $1 = (struct isakmp_payload *) 0x62bbe0 (gdb) p *p $2 = {next = 0x62c050, type = ISAKMP_PAYLOAD_CERT, u = {sa = {doi = 69730308, situation = 0, proposals = 0x62c048}, p = {number = 4 '\004', prot_id = 0 '\0', spi_size = 40 '(', spi = 0x62c048 "A", transforms = 0x0}, t = {number = 4 '\004', id = 0 '\0', attributes = 0x62c048}, ke = {length = 4, data = 0x62c048 "A"}, hash = { length = 4, data = 0x62c048 "A"}, sig = {length = 4, data = 0x62c048 "A"}, nonce = {length = 4, data = 0x62c048 "A"}, vid = {length = 4, data = 0x62c048 "A"}, natd = { length = 4, data = 0x62c048 "A"}, id = {type = 4 '\004', protocol = 0 '\0', port = 1064, length = 0, data = 0x62c048 "A"}, cert = {encoding = 4 '\004', length = 1064, data = 0x62c048 "A"}, cr = {encoding = 4 '\004', length = 1064, data = 0x62c048 "A"}, n = {doi = 69730308, protocol = 0 '\0', spi_length = 0 '\0', spi = 0x62c048 "A", type = 0, data_length = 0, data = 0x0, attributes = 0x0}, d = {doi = 69730308, protocol = 0 '\0', spi_length = 0 '\0', num_spi = 0, spi = 0x62c048}, modecfg = { type = 4 '\004', id = 1064, attributes = 0x62c048}}} (gdb) p p->u.cert.data $3 = (uint8_t *) 0x62c048 "A" (gdb) p p->u.cert $4 = {encoding = 4 '\004', length = 1064, data = 0x62c048 "A"} (gdb) p p->u $5 = {sa = {doi = 69730308, situation = 0, proposals = 0x62c048}, p = {number = 4 '\004', prot_id = 0 '\0', spi_size = 40 '(', spi = 0x62c048 "A", transforms = 0x0}, t = { number = 4 '\004', id = 0 '\0', attributes = 0x62c048}, ke = {length = 4, data = 0x62c048 "A"}, hash = {length = 4, data = 0x62c048 "A"}, sig = {length = 4, data = 0x62c048 "A"}, nonce = {length = 4, data = 0x62c048 "A"}, vid = {length = 4, data = 0x62c048 "A"}, natd = {length = 4, data = 0x62c048 "A"}, id = {type = 4 '\004', protocol = 0 '\0', port = 1064, length = 0, data = 0x62c048 "A"}, cert = {encoding = 4 '\004', length = 1064, data = 0x62c048 "A"}, cr = {encoding = 4 '\004', length = 1064, data = 0x62c048 "A"}, n = {doi = 69730308, protocol = 0 '\0', spi_length = 0 '\0', spi = 0x62c048 "A", type = 0, data_length = 0, data = 0x0, attributes = 0x0}, d = {doi = 69730308, protocol = 0 '\0', spi_length = 0 '\0', num_spi = 0, spi = 0x62c048}, modecfg = {type = 4 '\004', id = 1064, attributes = 0x62c048}} (gdb) p *(uint8_t *) 0x62c048 $6 = 65 'A' ----------------------------- glibc thinks 0x62c048 in an invalid address for free. But gdb is fine with printing it. So, who is right?
I reported this bug upstream and it has been fixed. Please try with 0.5.1_p332.
