Hey.
I found the following issue by chance, when converting a shell
script[0] from bash to POSIX sh (well that + the use of "local"):
Below is a strongly reduced version of [0] which still causes the
error:
-------------------------------------------------------------------
#!/bin/sh
reject_and_die()
{
exit 1
}
reject_filtered_cmd()
{
reject_and_die "disallowed command${restrict_path_list:+ (restrict-path: \"${restrict_path_list//|/\", \"}\")}"
}
reject_filtered_cmd
-------------------------------------------------------------------
As you can see, I missed one bashism, namely the
${parameter//pattern/string} form of parameter expansion.
Now executing this with dash:
$ dpkg -l dash | grep ^ii
ii dash 0.5.11+git20210903+057cd650a4ed-9 amd64 POSIX-compliant shell
$ dash ssh_filter_btrbk.sh
Segmentation fault
$
With kernel log:
Nov 21 03:31:37 heisenberg kernel: dash[145217]: segfault at 1 ip 000055fa32ef8cd4 sp 00007ffd79a75140 error 4 in dash[55fa32ef3000+13000]
Nov 21 03:31:37 heisenberg kernel: Code: e2 01 4c 8d 34 42 48 8d 05 61 d9 00 00 49 01 c6 89 f0 83 e0 02 89 85 fc fe ff ff 74 17 c7 85 fc fe ff ff 00 00 00 00 83 e3 fd <41> 80 3f 7e 0f 84 c2 05 00 00 48 8b 35 8b 58 01 00 48 8b 05 5c 53
Shouldn't that rather give some parsing error?
One some other system (where I cannot really test any further since I
have no root) it even may have caused some more:
[10527194.157467] ssh_filter_btrb[816610]: segfault at 0 ip 000055c8ac34a698 sp 00007ffd4a997080 error 4 in dash[55c8ac344000+13000]
[10527194.157482] Code: 85 c4 01 00 00 48 83 c4 68 4c 89 f8 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 00 48 83 c2 02 eb a2 66 90 4c 89 fa 4d 85 f6 78 98 <48> 8b 36 bf 01 00 00 00 eb 8e 66 0f 1f 44 00 00 0f b6 42 01 48 83
[10527195.790531] traps: pool-tracker-st[816482] trap int3 ip:7f94e8271295 sp:7f94deffc770 error:0 in libglib-2.0.so.0.6400.6[7f94e8235000+84000]
Not sure whether that traps is in anyway related or just some
coincidence.
Thanks,
Chris.
[0] https://github.com/digint/btrbk/blob/master/ssh_filter_btrbk.sh
segfault with invalid shell script
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: segfault with invalid shell script
- From: Christoph Anton Mitterer <calestyo@xxxxxxxxxxxx>
- Date: Mon, 21 Nov 2022 03:38:22 +0100
- User-agent: Evolution 3.46.1-1
- Follow-Ups:
- Re: segfault with invalid shell script
- From: Harald van Dijk
- Re: segfault with invalid shell script
- Prev by Date: Re: incomplete documentation of local?
- Next by Date: Re: segfault with invalid shell script
- Previous by thread: incomplete documentation of local?
- Next by thread: Re: segfault with invalid shell script
- Index(es):
 |