auth-policy crashing

James list at xdrv.co.uk
Fri Aug 2 13:45:23 EEST 2019 

My auth process is dumping core.  This happens several times per day but 
dovecot can operate normally for hours between errors.

The crash occurs in src/auth/auth-policy.c, line 356:

t at 1 (l at 1) program terminated by signal SEGV (no mapping at the fault 
address)
Current function is auth_policy_parse_response
   356           context->request->policy_refusal = FALSE;

...context->request is null.  Add markers to the code...

     }
     if (context->request == NULL) fprintf(stderr, 
"2222222222222222222222222222 context->request == NULL\n");
     i_stream_unref(&context->payload);

     if (context->request == NULL) fprintf(stderr, 
"1111111111111111111111111111 context->request == NULL\n");
     if (context->parse_error) {
         context->result = (context->set->policy_reject_on_fail ? -1 : 0);
     }

     if (context->request == NULL) fprintf(stderr, 
"AAAAAAAAAAAAAAAAAAAAAAAAAAAA context->request == NULL\n");
     context->request->policy_refusal = FALSE;

     if (context->result < 0) {

...gives at the time of the crash...

Aug  1 14:25:44 mailhost dovecot: [ID 702911 mail.error] auth: Error: 
1111111111111111111111111111 context->request == NULL
Aug  1 14:25:44 mailhost dovecot: [ID 702911 mail.error] auth: Error: 
AAAAAAAAAAAAAAAAAAAAAAAAAAAA context->request == NULL

...so context->result is not null before the call (no 222) to 
i_stream_unref but is after.



dovecot.conf has:

auth_policy_server_url = http://policyserver.lan/
auth_policy_server_timeout_msecs = 3000
auth_policy_hash_nonce = Ohr9phaeSeip2Pahaez2raiGohxoo5Ia
auth_policy_request_attributes = remote=%{rip}
auth_policy_check_before_auth = yes
auth_policy_check_after_auth = yes
auth_policy_report_after_auth = yes


To simplify the problem I used a dummy policy server, in nginx.conf:

     location / {
         default_type  application/json;
         return 200 "{\"status\":0,\"msg\":\"accepted\"}";
     }

however no matter what rubbish a policy server sends back it should not 
cause dovecot to crash.

I've tried 32 and 64 bit and two compilers (gcc and SunStudio), all 
result in crashes.  Adding:
     keepalive_timeout 0;
...to nginx.conf appears to reduce the crashes.  It happens with a 
variety of users and with debug output I see no pattern.



James.

More information about the dovecot mailing list