FS#64239 - [pacman] -U with personal gpgkey signature package let pacman core dump

Attached to Project: Pacman
Opened by Akatsuki Rui (akiirui) - Thursday, 24 October 2019, 03:48 GMT
Last edited by Allan McRae (Allan) - Tuesday, 05 November 2019, 05:00 GMT
Task Type Bug Report
Category General
Status Closed
Assigned To No-one
Architecture All
Severity Medium
Priority Normal
Reported Version 5.2.0
Due in Version 5.2.1
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

Description:

makepkg --sign (with myself GPG key, has not add into pacman-key)
pacman -U package.tar.xz
:: Import PGP key [GPG Key, shown as `keyid-format short`], ""? [Y/n] n
pacman coredump

And have random exit output like these:
free(): double free detected in tcache 2
malloc(): unsorted double linked list corrupted
double free or corruption (fasttop)
error: segmentation fault

* Downgrade to pacman 5.1.3 work fine

Additional info:

package version: pacman 5.2.0-2

No partial upgrade
No files corruption

coredump log 1:
Process 274573 (pacman) of user 0 dumped core.

Stack trace of thread 274573:
#0 0x00007fd496796f25 raise (libc.so.6)
#1 0x00007fd496780897 abort (libc.so.6)
#2 0x00007fd4967da258 __libc_message (libc.so.6)
#3 0x00007fd4967e177a malloc_printerr (libc.so.6)
#4 0x00007fd4967e359d _int_free (libc.so.6)
#5 0x00007fd4969ef8f1 alpm_pkg_load (libalpm.so.12)
#6 0x000055c8ab414f57 n/a (pacman)
#7 0x000055c8ab40721a n/a (pacman)
#8 0x00007fd496782153 __libc_start_main (libc.so.6)
#9 0x000055c8ab40844e n/a (pacman)

coredump log 2:
Process 54930 (pacman) of user 0 dumped core.

Stack trace of thread 54930:
#0 0x00007fefda1dff25 raise (libc.so.6)
#1 0x0000562280a460ad n/a (pacman)
#2 0x00007fefda1dffb0 __restore_rt (libc.so.6)
#3 0x00007fefda22ef2e malloc (libc.so.6)
#4 0x00007fefda1dca6f _nl_make_l10nflist.localalias (libc.so.6)
#5 0x00007fefda1dcd83 _nl_make_l10nflist.localalias (libc.so.6)
#6 0x00007fefda1dcd83 _nl_make_l10nflist.localalias (libc.so.6)
#7 0x00007fefda1dcd83 _nl_make_l10nflist.localalias (libc.so.6)
#8 0x00007fefda1daa81 _nl_find_domain (libc.so.6)
#9 0x00007fefda1da1f0 __dcigettext (libc.so.6)
#10 0x00007fefda438986 alpm_pkg_load (libalpm.so.12)
#11 0x0000562280a49f57 n/a (pacman)
#12 0x0000562280a3c21a n/a (pacman)
#13 0x00007fefda1cb153 __libc_start_main (libc.so.6)
#14 0x0000562280a3d44e n/a (pacman)


Steps to reproduce:
makepkg --sign (this key has not add into pacman-key)
pacman -U package
This task depends upon

Closed by  Allan McRae (Allan)
Tuesday, 05 November 2019, 05:00 GMT
Reason for closing:  Fixed
Additional comments about closing:  git commit ae5cf26b
Comment by Allan McRae (Allan) - Thursday, 24 October 2019, 05:19 GMT
Any chance you can provide the package and signature? I can't replicate locally.
Comment by Akatsuki Rui (akiirui) - Thursday, 24 October 2019, 09:31 GMT
@Allan Thanks for reply.

Here are package & sig files.

---

And same issues this time for me:

pacman 5.2.0-2:

loading packages...
:: Import PGP key 1E076ED8BD9CAADE, ""? [Y/n] n
malloc(): unsorted double linked list corrupted

Process 13311 (pacman) of user 0 dumped core.

Stack trace of thread 13311:
#00x00007fb89c735f25 raise (libc.so.6)
#10x00007fb89c71f897 abort (libc.so.6)
#20x00007fb89c779258 __libc_message (libc.so.6)
#30x00007fb89c78077a malloc_printerr (libc.so.6)
#40x00007fb89c78390c _int_malloc (libc.so.6)
#50x00007fb89c784e84 malloc (libc.so.6)
#60x00007fb89c732a6f _nl_make_l10nflist.localalias (lib>
#70x00007fb89c732d83 _nl_make_l10nflist.localalias (lib>
#80x00007fb89c732d83 _nl_make_l10nflist.localalias (lib>
#90x00007fb89c730a81 _nl_find_domain (libc.so.6)
#10 0x00007fb89c7301f0 __dcigettext (libc.so.6)
#11 0x00007fb89c98e986 alpm_pkg_load (libalpm.so.12)
#12 0x00005609f9110f57 n/a (pacman)
#13 0x00005609f910321a n/a (pacman)
#14 0x00007fb89c721153 __libc_start_main (libc.so.6)
#15 0x00005609f910444e n/a (pacman)

pacman 5.1.3-1 have no this issues:

loading packages...
:: Import PGP key 256E/CD5A2B88EEBC18AB12245A501E076ED8BD9CAADE, "MY NAME & EMAIL INFOMATION", created: 2019-10-24? [Y/n] n
error: required key missing from keyring
error: 'nano-4.5-1-x86_64.pkg.tar.zst': unexpected error
   nano-4.5-1-x86_64.pkg.tar.zst (640.1 KiB)
   nano-4.5-1-x86_64.pkg.tar.zst... (0.1 KiB)
Comment by Allan McRae (Allan) - Thursday, 24 October 2019, 13:19 GMT
I get...

$ pacman -U nano-4.5-1-x86_64.pkg.tar.zst
loading packages...
:: Import PGP key 1E076ED8BD9CAADE, " +9f�U"? [Y/n] Y
error: 'nano-4.5-1-x86_64.pkg.tar.zst': invalid or corrupted package (PGP signature)

So name and email not so good there.
Comment by Allan McRae (Allan) - Thursday, 24 October 2019, 13:42 GMT
  • Field changed: Category (Packages: Core → General)
  • Field changed: Reported Version ( → 5.2.0)
  • Field changed: Due in Version (Undecided → 5.2.1)
  • Field changed: Architecture (x86_64 → All)
  • Field changed: Percent Complete (0% → 100%)
Patch sent to mailing list.
Comment by Akatsuki Rui (akiirui) - Thursday, 24 October 2019, 13:55 GMT
@Allan try to answer 'n'?
Comment by Allan McRae (Allan) - Thursday, 24 October 2019, 14:03 GMT
It is fixed. The point of the output in my post was the "+9f�U" which showed me where the bad memory access was.
Comment by Akatsuki Rui (akiirui) - Thursday, 24 October 2019, 14:07 GMT
@Allan Oh, I understand. Thanks~

Loading...