Bug#533860: marked as done (samhain: frequent segfaults on lenny alpha)

[Debian Bug Tracking System]

Your message dated Sun, 19 Jan 2014 12:18:49 +0000
with message-id <e1w4rkz-0003iw...@franck.debian.org>
and subject line Bug#533860: fixed in samhain 3.1.0-3
has caused the Debian Bug report #533860,
regarding samhain: frequent segfaults on lenny alpha
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
533860: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=533860
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: samhain
Version: 2.2.3-6.2
Severity: important

Hello,

We're frequently seeing this in the logs:

Jun 21 01:00:44 escher logger: samhain[9777]: exit on signal 11

We're also seeing tons of:
Jun 21 00:59:48 escher kernel: [5457566.918614] samhain(9777): unaligned trap 
at 00000001200055b4: 0000000120073d1c 29 9
Jun 21 00:59:49 escher kernel: [5457566.918614] samhain(9777): unaligned trap 
at 00000001200055c4: 0000000120073d24 29 28
Jun 21 00:59:49 escher kernel: [5457566.919591] samhain(9777): unaligned trap 
at 00000001200055d4: 0000000120073d2c 29 12
Jun 21 00:59:49 escher kernel: [5457566.919591] samhain(9777): unaligned trap 
at 00000001200055e4: 0000000120073d34 29 10

although these are not correlated in time with the segfaults - just a
possible pointer that there are some serious misassumptions in the code
about safe behavior.

I'll try to get you a stacktrace.  Let me know if you need anything
else.

Cheers,

-- System Information:
Debian Release: 5.0.1
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.29.4-dsa-dl380-oldxeon (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8) (ignored: LC_ALL 
set to en_US.utf8)
Shell: /bin/sh linked to /bin/bash

Versions of packages samhain depends on:
ii  debconf [debconf-2.0]     1.5.24         Debian configuration management sy
ii  libc6                     2.7-18         GNU C Library: Shared libraries
ii  libgcrypt11               1.4.1-1        LGPL Crypto library - runtime libr
ii  libgnutls26               2.4.2-6+lenny1 the GNU TLS library - runtime libr
ii  libprelude2               0.9.18.1-1     Hybrid Intrusion Detection System 

samhain recommends no packages.

samhain suggests no packages.

-- debconf information:
  samhain/init-log:

--- End Message ---

--- Begin Message ---

Source: samhain
Source-Version: 3.1.0-3

We believe that the bug you reported is fixed in the latest version of
samhain, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 533...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Javier Fernández-Sanguino Peña <j...@debian.org> (supplier of updated samhain 
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 16 Jan 2014 03:30:24 +0100
Source: samhain
Binary: samhain
Architecture: source i386
Version: 3.1.0-3
Distribution: unstable
Urgency: medium
Maintainer: Javier Fernández-Sanguino Peña <j...@debian.org>
Changed-By: Javier Fernández-Sanguino Peña <j...@debian.org>
Description: 
 samhain    - Data integrity and host intrusion alert system
Closes: 533860 657307
Changes: 
 samhain (3.1.0-3) unstable; urgency=medium
 .
   * debian/rules:
     - Disable dnmalloc for all architectures expect those known to work. It
       seems to be the source of problems and segfaults in many different
       architectures (Closes: #533860, #657307)
 .
       Even though dnmalloc improves samhain's security this is done to avoid
       potential problematic situations while we wait more information from
       upstream indicating in which architectures dnmalloc() can
       be safely enabled.
Checksums-Sha1: 
 e049dda8305b48464e5d053eec4d7ac338d79c54 1130 samhain_3.1.0-3.dsc
 87687bc37feceffbd18dab9c548ed6d3f885a74a 40031 samhain_3.1.0-3.diff.gz
 b3a35cfaa58debd7b0f556f11bd99266067bec9a 1107764 samhain_3.1.0-3_i386.deb
Checksums-Sha256: 
 9b483cf054a5a86ff8f7fbcb4a5d31acda4d2fec0d892dc1ae61e285eefb51bb 1130 
samhain_3.1.0-3.dsc
 e519458152c778d3feb0f14566bfdecf8eb1645b4549fda6d6bdf90be8da0c1f 40031 
samhain_3.1.0-3.diff.gz
 86cdd6dfa942df9b8d118637aa679564467af6cb7747948674e1e1659ddb5d93 1107764 
samhain_3.1.0-3_i386.deb
Files: 
 f721fa3c08d15e796dd48de47c6a71f9 1130 admin optional samhain_3.1.0-3.dsc
 4be53e162aa5c5775e1c7bda43cc58a6 40031 admin optional samhain_3.1.0-3.diff.gz
 23633cea321261628aac66c791b5ba6f 1107764 admin optional 
samhain_3.1.0-3_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.15 (GNU/Linux)

iD8DBQFS27/LsandgtyBSwkRAlSVAKCD5d0zp8Ztw9HY+IjUrISIDr5MDwCfTigc
4NwAF4YSUxRnBe7DJ9McELM=
=6frA
-----END PGP SIGNATURE-----

--- End Message ---