bug#765: marked as done (mutt-1.3.22.1i: mutt dereferences NULL pointer after IMAP SSL connection dies and is restarted)
Your message dated Tue, 9 Sep 2003 23:27:53 -0400
with message-id <20030910032752.GB621@xxxxxxxxxxxxxxxxxxx>
and subject line I believe this is fixed
has caused the attached bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Herr der Kaefer
(administrator, GUUG bugs database)
--------------------------------------
Received: (at submit) by bugs.guug.de; 4 Sep 2001 08:02:49 +0000
>From gonufer@xxxxxxxxx Tue Sep 04 10:02:49 2001
Received: from daver.bungi.com ([207.126.97.2])
by trithemius.gnupg.org with esmtp (Exim 3.12 #1 (Debian))
id 15eBAW-0005Yb-00
for <submit@xxxxxxxxxxxx>; Tue, 04 Sep 2001 10:02:48 +0200
Received: from cheers by daver.bungi.com
via rsmtp with bsmtp
id <m15eB98-00004dC@xxxxxxxxxxxxxxx>
for <submit@xxxxxxxxxxxx>; Tue, 4 Sep 2001 08:01:22 +0000 (GMT)
(Smail-3.2.0.94 1997-Apr-22 #534 built 2001-Jul-23)
Received: from omsk.bungi.com (omsk.bungi.com [192.168.100.11])
by cheers.bungi.com (8.11.6+Sun/8.11.6) with ESMTP id f8480wa02038
for <submit@xxxxxxxxxxxx>; Tue, 4 Sep 2001 01:00:58 -0700 (PDT)
Received: (from exodus@localhost)
by omsk.bungi.com (8.11.6+Sun/8.11.6) id f8480vk02931;
Tue, 4 Sep 2001 01:00:57 -0700 (PDT)
Date: Tue, 4 Sep 2001 01:00:57 -0700 (PDT)
From: gonufer@xxxxxxxxx
Message-Id: <200109040800.f8480vk02931@xxxxxxxxxxxxxx>
Subject: mutt-1.3.22.1i: mutt dereferences NULL pointer after IMAP SSL
connection dies and is restarted
To: submit@xxxxxxxxxxxx
Package: mutt
Version: 1.3.22.1i
Severity: normal
-- Please type your report below this line
I was reading a mail folder via IMAP/SSL and, in another window,
killed the imapd. mutt noticed the imap went away, said the
"close" folder operation failed. I then typed "c" and tried
to re-open the folder and mutt dumped core while opening a new
connection to the server.
Here's the info from the core file:
core file = core -- program ``/pkg/mail/bin/mutt'' on platform
SUNW,Sun-Blade-1000
SIGSEGV: Segmentation Fault
$c
ssl_socket_read+0xc(1a8d68, 1a8e74, 400, 98034, 1, 0)
mutt_socket_readchar+0x34(1a8d68, ffbfba5f, 0, 1, c0a8640b, 4045ac)
mutt_socket_readln_d+0x28(0, 1ff, 1a8d68, 2, 75730000, 75730000)
imap_cmd_step+0x7c(19f5f8, 1a8d68, 400, 37f2fe, 0, 1d5e18)
imap_open_connection+0x20(19f5f8, 19f5f8, ffbfc0c0, ffbfbf38, ffbfbf47, 1b5400)
imap_conn_find+0xd0(19f5f8, 0, ffffffff, 0, 177400, ffbfc308)
imap_browse+0xa8(1772c8, 0, ffbfd310, ffbfd738, 0, ffbfd9d8)
_mutt_select_file+0x29c(ffbfde78, 400, 4, 1, 0, 0)
_mutt_enter_string+0xdc8(ffbfde78, 400, 3, 0, 24, ffbfdb54)
_mutt_get_field+0x88(34d638, ffbfde78, 400, 24, 0, 0)
_mutt_enter_fname+0x170(149d78, ffbfde78, 400, 1a76dc, 1, 0)
mutt_index_menu+0x11d4(1a1e10, 0, 0, 191800, 1, 0)
main+0xb7c(0, ffbfeb1c, 150400, 150400, 17a000, 17a000)
_start+0x5c(0, 0, 0, 0, 0, 0)
$r
%g0 = 0x00000000 %l0 = 0x00000000
%g1 = 0xff219068 libc.so.1`_libc_sigaction+0x9c %l1 = 0x00000000
%g2 = 0x00000000 %l2 = 0x00000000
%g3 = 0x00000001 %l3 = 0x00000000
%g4 = 0x00000120 %l4 = 0x00000000
%g5 = 0x00000000 %l5 = 0x00000000
%g6 = 0x00000000 %l6 = 0x00000000
%g7 = 0x00000000 %l7 = 0x00000000
%o0 = 0x00000000 %i0 = 0x001a8d68
%o1 = 0x001a8e74 %i1 = 0x001a8e74
%o2 = 0x00000000 %i2 = 0x00000400
%o3 = 0x00000000 %i3 = 0x00098034 ssl_socket_read
%o4 = 0x00000000 %i4 = 0x00000001
%o5 = 0x00000000 %i5 = 0x00000000
%o6 = 0xffbfb918 %i6 = 0xffbfb988
%o7 = 0x00084ec4 mutt_allow_interrupt+0x44 %i7 = 0x0009722c
mutt_socket_readchar+0x34
%psr = 0xfe001005 impl=0xf ver=0xe icc=nzvc
ec=0 ef=4096 pil=0 s=0 ps=0 et=0 cwp=0x5
%y = 0x00000000
%pc = 0x00098040 ssl_socket_read+0xc
%npc = 0x00098044 ssl_socket_read+0x10
%sp = 0xffbfb918
%fp = 0xffbfb988
%wim = 0x00000000
%tbr = 0x00000000
0x00098040?i
ssl_socket_read+0xc: ld [%o2 + 4], %o0
ssl_socket_read,3?ia
ssl_socket_read:save %sp, -0x70, %sp
ssl_socket_read+4: ld [%i0 + 0x51c], %o2
ssl_socket_read+8: mov %i1, %o1
ssl_socket_read+0xc:
So ssl_socket_read was passed a non-NULL "conn" but conn->sockdata
was NULL and trying to dereference it (data->ssl) caused mutt
to die.
static int ssl_socket_read (CONNECTION* conn, char* buf, size_t len)
{
sslsockdata *data = conn->sockdata;
return SSL_read (data->ssl, buf, len);
}
-- Mutt Version Information
Mutt 1.3.22.1i (2001-08-30)
Copyright (C) 1996-2001 Michael R. Elkins and others.
Mutt comes with ABSOLUTELY NO WARRANTY; for details type `mutt -vv'.
Mutt is free software, and you are welcome to redistribute it
under certain conditions; type `mutt -vv' for details.
System: SunOS 5.9 [using slang 10402]
Compile options:
-DOMAIN
+DEBUG
-HOMESPOOL -USE_SETGID +USE_DOTLOCK -DL_STANDALONE
+USE_FCNTL -USE_FLOCK
+USE_POP +USE_IMAP -USE_GSS +USE_SSL -USE_SASL
+HAVE_REGCOMP -USE_GNU_REGEX
+HAVE_COLOR -HAVE_START_COLOR -HAVE_TYPEAHEAD -HAVE_BKGDSET
-HAVE_CURS_SET -HAVE_META -HAVE_RESIZETERM
+HAVE_PGP -BUFFY_SIZE -EXACT_ADDRESS -SUN_ATTACHMENT
-ENABLE_NLS -LOCALES_HACK -HAVE_WC_FUNCS +HAVE_LANGINFO_CODESET
+HAVE_LANGINFO_YESEXPR
+HAVE_ICONV +ICONV_NONTRANS +HAVE_GETSID -HAVE_GETADDRINFO
ISPELL="/pkg/local/bin/ispell"
SENDMAIL="/usr/lib/sendmail"
MAILPATH="/var/mail"
PKGDATADIR="/pkg/mail/share/mutt"
SYSCONFDIR="/pkg/mail/etc"
EXECSHELL="/bin/sh"
-MIXMASTER
To contact the developers, please mail to <mutt-dev@xxxxxxxx>.
To report a bug, please use the flea(1) utility.
---------------------------------------
Received: (at 765-done) by bugs.guug.de; 10 Sep 2003 03:25:36 +0000
>From brendan@xxxxxxxxxx Wed Sep 10 05:25:34 2003
Received: from nycsmtp4out-eri0.rdc-nyc.rr.com ([24.29.99.227])
by trithemius.gnupg.org with esmtp (Exim 3.35 #1 (Debian))
id 19wvbp-0004tF-00
for <765-done@xxxxxxxxxxxx>; Wed, 10 Sep 2003 05:25:33 +0200
Received: from watanabe.kublai.com (24-29-153-53.nyc.rr.com [24.29.153.53])
by nycsmtp4out-eri0.rdc-nyc.rr.com (8.12.1/Road Runner SMTP Server 1.0)
with ESMTP id h8A3Rrw4006968
for <765-done@xxxxxxxxxxxx>; Tue, 9 Sep 2003 23:27:54 -0400 (EDT)
Received: from watanabe.kublai.com (localhost [127.0.0.1])
by watanabe.kublai.com (8.12.9/8.12.2) with ESMTP id h8A3RrOu013736
for <765-done@xxxxxxxxxxxx>; Tue, 9 Sep 2003 23:27:53 -0400 (EDT)
Received: (from brendan@localhost)
by watanabe.kublai.com (8.12.9/8.12.2/Submit) id h8A3RriP013735
for 765-done@xxxxxxxxxxxx; Tue, 9 Sep 2003 23:27:53 -0400 (EDT)
X-Authentication-Warning: watanabe.kublai.com: brendan set sender to
brendan@xxxxxxxxxx using -f
Date: Tue, 9 Sep 2003 23:27:53 -0400
From: Brendan Cully <brendan@xxxxxxxxxx>
To: 765-done@xxxxxxxxxxxx
Subject: I believe this is fixed
Message-ID: <20030910032752.GB621@xxxxxxxxxxxxxxxxxxx>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
X-Operating-System: Darwin 6.6 Power Macintosh
User-Agent: Mutt/1.5.4i
X-Spam-Status: No, hits=-102.9 required=5.0
tests=USER_AGENT_MUTT,USER_IN_WHITELIST,X_AUTH_WARNING
version=2.55
X-Spam-Level:
X-Spam-Checker-Version: SpamAssassin 2.55 (1.174.2.19-2003-05-19-exp)
I believe this has been fixed in recent CVS.