[
https://issues.apache.org/jira/browse/GUACAMOLE-1903?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17807165#comment-17807165
]
Simon Vogl commented on GUACAMOLE-1903:
---------------------------------------
[~vnick] thanks for your comments, let me answer bottom-up:
* This is a debian 11.8 with stock libvncclient/libvncserver
0.9.13+dfsg-2+deb11u1 running on
Linux scs-uplink-test 5.10.0-27-amd64 #1 SMP Debian 5.10.205-2 (2023-12-31)
x86_64 GNU/Linux
* upgrade - no other changes; I have tried different versions by now and it
seems to appear when switching vom 1.5.3 to 1.5.4 ; older versions are
unaffected. I can & will try the libvncclient head revision (0.9.14) and see if
that makes a difference
log, using the current commit (c383a7319345cff83e5c2b7769f750d0701e5e90) and
running
./src/guacd/.libs/guacd -L trace -b 127.0.0.1 -l 4822 -p /tmp/guacd.pid -f
2>&1 | tee guacd.log
I see the following; I hit reconnect in the browser, screen appears, I move my
mouse a few pixels and then the connection disconnects (with the double-free
occuring as below):
{{root@scs-uplink-test:/home/simon/proj/schauer-cloud/guac.sources/guacamole-server#
cat guacd.log }}
{{guacd[1568034]: INFO: Guacamole proxy daemon (guacd) version 1.5.4
started}}
{{guacd[1568034]: DEBUG: Successfully bound AF_INET socket to host
127.0.0.1, port 4822}}
{{guacd[1568034]: INFO: Listening on host 127.0.0.1, port 4822}}
{{guacd[1568034]: INFO: Creating new client for protocol "vnc"}}
{{guacd[1568034]: INFO: Connection ID is
"$218cf71e-f955-4afa-8f0e-a5df957ccbce"}}
{{guacd[1568041]: DEBUG: Processing instruction: size}}
{{guacd[1568041]: DEBUG: Processing instruction: audio}}
{{guacd[1568041]: DEBUG: Processing instruction: video}}
{{guacd[1568041]: DEBUG: Processing instruction: image}}
{{guacd[1568041]: DEBUG: Processing instruction: timezone}}
{{guacd[1568041]: DEBUG: Processing instruction: name}}
{{guacd[1568041]: INFO: Cursor rendering: local}}
{{guacd[1568041]: DEBUG: Parameter "swap-red-blue" omitted. Using default
value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "read-only" omitted. Using default value
of 0.}}
{{guacd[1568041]: DEBUG: Parameter "color-depth" omitted. Using default
value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "force-lossless" omitted. Using default
value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "dest-port" omitted. Using default value
of 0.}}
{{guacd[1568041]: DEBUG: Parameter "encodings" omitted. Using default value
of "zrle ultra copyrect hextile zlib corre rre raw".}}
{{guacd[1568041]: DEBUG: Parameter "autoretry" omitted. Using default value
of 0.}}
{{guacd[1568041]: DEBUG: Parameter "reverse-connect" omitted. Using default
value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "listen-timeout" omitted. Using default
value of 5000.}}
{{guacd[1568041]: DEBUG: Parameter "enable-audio" omitted. Using default
value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "sftp-password" omitted. Using default
value of "".}}
{{guacd[1568041]: DEBUG: Parameter "sftp-passphrase" omitted. Using default
value of "".}}
{{guacd[1568041]: DEBUG: Parameter "sftp-server-alive-interval" omitted.
Using default value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "sftp-disable-download" omitted. Using
default value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "sftp-disable-upload" omitted. Using
default value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "recording-name" omitted. Using default
value of "recording".}}
{{guacd[1568041]: DEBUG: Parameter "recording-exclude-output" omitted. Using
default value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "recording-exclude-mouse" omitted. Using
default value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "recording-include-keys" omitted. Using
default value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "create-recording-path" omitted. Using
default value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "disable-copy" omitted. Using default
value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "disable-paste" omitted. Using default
value of 0.}}
{{guacd[1568041]: DEBUG: Parameter "wol-send-packet" omitted. Using default
value of 0.}}
{{guacd[1568041]: INFO: User "@8676ddc1-055d-4238-8f49-23c4bad5c6f5" joined
connection "$218cf71e-f955-4afa-8f0e-a5df957ccbce" (1 users now present)}}
{{guacd[1568041]: DEBUG: Client is using protocol version "VERSION_1_5_0"}}
{{guacd[1568041]: TRACE: Server completed frame 863265531ms (0 logical
frames)}}
{{guacd[1568041]: TRACE: User confirmation of frame 863265531ms received at
863265540ms (processing_lag=0ms, estimated_rtt=9ms)}}
{{guacd[1568041]: TRACE: Server completed frame 863265713ms (0 logical
frames)}}
{{guacd[1568041]: TRACE: Server completed frame 863265747ms (0 logical
frames)}}
{{guacd[1568041]: TRACE: User confirmation of frame 863265713ms received at
863265757ms (processing_lag=35ms, estimated_rtt=9ms)}}
{{guacd[1568041]: TRACE: User confirmation of frame 863265747ms received at
863265800ms (processing_lag=44ms, estimated_rtt=9ms)}}
{{guacd[1568041]: TRACE: Server completed frame 863266748ms (0 logical
frames)}}
{{guacd[1568041]: TRACE: User confirmation of frame 863266748ms received at
863266826ms (processing_lag=69ms, estimated_rtt=9ms)}}
{{guacd[1568041]: TRACE: Server completed frame 863267749ms (0 logical
frames)}}
{{guacd[1568041]: TRACE: User confirmation of frame 863267749ms received at
863267757ms (processing_lag=0ms, estimated_rtt=8ms)}}
{{free(): double free detected in tcache 2}}
{{guacd[1568034]: INFO: Connection "$218cf71e-f955-4afa-8f0e-a5df957ccbce"
removed.}}
{{guacd[1568034]: DEBUG: Unable to request termination of client process: No
such process }}
{{guacd[1568034]: DEBUG: All child processes for connection
"$218cf71e-f955-4afa-8f0e-a5df957ccbce" have been terminated.}}
> guacd 1.5.4/master double free issue
> ------------------------------------
>
> Key: GUACAMOLE-1903
> URL: https://issues.apache.org/jira/browse/GUACAMOLE-1903
> Project: Guacamole
> Issue Type: Bug
> Components: guacamole-server, guacd
> Affects Versions: 1.5.4
> Reporter: Simon Vogl
> Priority: Major
> Attachments: drd.log
>
>
> Hi all,
> we have a running 1.4 installation that serves vnc connections (only). I am
> trying to upgrade to a recent code basis as we want to add some features
> (alt-f4 etc on the OSD).
> I installed client and server versions 1.5.4 on a test machine and it works
> only for some of our client boxes (ones in our office,p.ex.) but guacd dies
> for other connections (at a remote site behind a firewall) with a 'double
> free' error. Guacd seemingly dies when cursor movements happen on the web
> client, and I saw it happen consistently when the mouse enters / leaves the
> rendered remote display in the browser window.
> I ran guacd with the valgrind drd tool
> valgrind --tool=drd --trace-fork-join=yes /usr/local/sbin/guacd-1.5.4a -f -L
> trace -b 127.0.0.1 -l 4822 -p /tmp/guacd.pid
> and captured the state in the attachmed drd.log when guacd died away.
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
