Debian Bug report logs - #616667
X server crash due to "xauth generate" with large timeout

Full log

Message #21 received at [email protected] (full text, mbox, reply):

Received: (at control) by bugs.debian.org; 6 Mar 2011 13:34:34 +0000
From [email protected] Sun Mar 06 13:34:34 2011
X-Spam-Checker-Version: SpamAssassin 3.2.5-bugs.debian.org_2005_01_02
	(2008-06-10) on busoni.debian.org
X-Spam-Level: 
X-Spam-Bayes: score:0.0000 Tokens: new, 13; hammy, 151; neutral, 92; spammy,
	0. spammytokens: hammytokens:0.000-+--H*o:Debian, 0.000-+--H*F:U*kibi,
	0.000-+--KiBi, 0.000-+--H*rp:U*kibi,
	0.000-+--HX-Spam-Relays-External:88.164.242.219
X-Spam-Status: No, score=-16.0 required=4.0 tests=BAYES_00,FROMDEVELOPER,
	FUZZY_CPILL,HAS_BUG_NUMBER,PGPSIGNATURE,VALID_BTS_CONTROL autolearn=ham
	version=3.2.5-bugs.debian.org_2005_01_02
Return-path: <[email protected]>
Received: from glenfiddich.ikibiki.org ([88.191.124.82])
	by busoni.debian.org with esmtps (TLS1.0:RSA_AES_256_CBC_SHA1:32)
	(Exim 4.69)
	(envelope-from <[email protected]>)
	id 1PwE6U-0004um-38; Sun, 06 Mar 2011 13:34:34 +0000
Received: from home.ikibiki.org ([88.164.242.219] helo=kitty)
	by glenfiddich.ikibiki.org with esmtp (Exim 4.69)
	(envelope-from <[email protected]>)
	id 1PwE6P-0005La-H1; Sun, 06 Mar 2011 14:34:29 +0100
Received: from kibi by kitty with local (Exim 4.72)
	(envelope-from <[email protected]>)
	id 1PwE6P-0007Td-4s; Sun, 06 Mar 2011 14:34:29 +0100
Date: Sun, 6 Mar 2011 14:34:29 +0100
From: Cyril Brulebois <[email protected]>
To: Ian Jackson <[email protected]>, [email protected]
Subject: Re: Bug#616667: X server crash due to "xauth generate" with large
 timeout
Message-ID: <[email protected]>
References: <[email protected]>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="CdrF4e02JqNVZeln"
Content-Disposition: inline
In-Reply-To: <[email protected]>
Organization: Debian
User-Agent: Mutt/1.5.20 (2009-06-14)
Delivered-To: [email protected]

[Message part 1 (text/plain, inline)]

severity 616667 important
reassign 616667 xserver-xorg-core
found    616667 2:1.7.7-11
user     [email protected]
usertag  squeeze-candidate
thanks

Hi Ian,

Ian Jackson <[email protected]> (06/03/2011):
> Package: xserver-xorg
> Version: 1:7.5+8
> 
> To reproduce:
>  cp .Xauthority private/tmpfile
>  xauth -f private/tmpfile generate $DISPLAY . untrusted timeout 1000000000
> 
> Actual behaviour:
> My X server died.  The log message was:
>  X: ../../Xext/security.c:323: SecurityAuthorizationExpired: Assertion `pAuth->timer == timer' failed.

ouch. Tagging as something we might want to fix in squeeze (until it's
investigated anyway).

XIO:  fatal IO error 11 (Resource temporarily unavailable) on X server ":0.0"
>        after 7385 requests (7224 known processed) with 0 events remaining.
> 
> Desired behaviour:
> X auth cookie is replaced in private/tmpfile and X server does not
> crash.  Alternatively, an error message (eg, that the timeout is too
> large, or that the X request failed).
> 
> I was trying to make an untrusted cookie which would not time out.
> Unfortunately that does not appear to be possible.  A timeout value of
> 1000000 seems to work; 10000000 crashes the server.

With 2:1.9.99.903-1, I'm getting:
| -(cyril@talisker)-(/tmp)-()
| $ xauth -f private generate $DISPLAY . untrusted timeout 1000000000
| xauth: (argv):1:  couldn't query Security extension on display ":42.0"

Will see if that's expected once I get some more info from a squeeze
system.

KiBi.

[signature.asc (application/pgp-signature, inline)]

Send a report that this bug log contains spam.