segfault in gnupg14 (was: How to sign with non-subkey?)

[Peter Palfrader]

On Tue, 21 Mar 2006, Simon Josefsson wrote:

> jas at latte:~$ echo foo |gpg -a -s -v -u b565716f
> gpg: using subkey AABB1F7B instead of primary key B565716F
> gpg: writing to stdout
> gpg: using subkey AABB1F7B instead of primary key B565716F
> gpg: RSA/SHA1 signature from: "AABB1F7B Simon Josefsson <simon at josefsson.org>"
> -----BEGIN PGP MESSAGE-----
> Version: GnuPG v1.4.2.2 (GNU/Linux)
> 
> owGbwMvMwMS4XF34xKrd8tWMp7mSGFwURP6l5edzdZxiYWBkYjBhZQKJ6Io0MACB
> KAN/QXaibmJKSlFqcbFDel5pQbpeflF6VmKxQ2pFSWleSr5ecn4uAxenAMzQy+bM
> /4v/zBGfa+XAOvOGXqTUwQde0rPmL9P6KDS/8HLSjbKjN5fM+bfO0StszgfhZK0N
> R3X5lKuSzsUa1B5fWvKed/HOTZ9rbrUw8ZdwuT9d33bV/8xzcbFLe+y//76ttcg8
> v3G1sbjG1kSh62GcnIEmgay1uU4C06ezaT7wbJ1222IN60yGD7w3DwAA
> =HgpN
> -----END PGP MESSAGE-----
> jas at latte:~$

While handling this block my gpg segfaulted.

| weasel at asteria:~$ gpg < blurb
| foo
| gpg: Signature made Tue Mar 21 16:00:14 2006 CET using RSA key ID AABB1F7B
| 
| gpg: Segmentation fault caught ... exiting
| zsh: segmentation fault  gpg < blurb

After enabling coredumps:

#0  0x08066b35 in is_valid_mailbox (name=0x20 <Address 0x20 out of bounds>) at misc.c:1112
1112      return !( !name
(gdb) bt
#0  0x08066b35 in is_valid_mailbox (name=0x20 <Address 0x20 out of bounds>) at misc.c:1112
#1  0x0806111c in get_pka_address (sig=0x8188cf0) at mainproc.c:1350
#2  0x08061198 in pka_uri_from_sig (sig=0x812f9c0) at mainproc.c:1377
#3  0x08062181 in check_sig_and_print (c=0x8133820, node=0x812faf8) at mainproc.c:1576
#4  0x080628cb in proc_tree (c=0x8133820, node=0x8131698) at mainproc.c:1965
#5  0x0805e84c in release_list (c=0x8133820) at mainproc.c:97
#6  0x08060ed1 in do_proc_packets (c=0x8133820, a=0x812d538) at mainproc.c:1323
#7  0x08060c8e in proc_packets (anchor=0x8188cf0, a=0x8188cf0) at mainproc.c:1135
#8  0x08054c22 in handle_compressed (procctx=0x8188cf0, cd=0x812d490, callback=0, passthru=0x8188cf0) at compress.c:326
#9  0x0805fcf8 in proc_compressed (c=0x8131638, pkt=0x812d480) at mainproc.c:756
#10 0x08060f28 in do_proc_packets (c=0x8131638, a=0x812d538) at mainproc.c:1281
#11 0x08060c8e in proc_packets (anchor=0x8188cf0, a=0x8188cf0) at mainproc.c:1135
#12 0x0804fc75 in main (argc=0, argv=0xbf9db188) at gpg.c:3736

full:
#0  0x08066b35 in is_valid_mailbox (name=0x20 <Address 0x20 out of bounds>) at misc.c:1112
No locals.
#1  0x0806111c in get_pka_address (sig=0x8188cf0) at mainproc.c:1350
        pka = (pka_info_t *) 0x0
        nd = (struct notation *) 0x8188cf0
        notation = (struct notation *) 0x8188cf0
#2  0x08061198 in pka_uri_from_sig (sig=0x812f9c0) at mainproc.c:1377
No locals.
#3  0x08062181 in check_sig_and_print (c=0x8133820, node=0x812faf8) at mainproc.c:1576
        uri = 0x8188cf0 "\220\214\030\b@\212\030\b"
        sig = (PKT_signature *) 0x812f9c0
        astr = 0x810c42a "RSA"
        rc = 9
        is_expkey = 0
        is_revkey = 0
#4  0x080628cb in proc_tree (c=0x8133820, node=0x8131698) at mainproc.c:1965
        n1 = 0x812faf8
        rc = 135826672
#5  0x0805e84c in release_list (c=0x8133820) at mainproc.c:97
No locals.
#6  0x08060ed1 in do_proc_packets (c=0x8133820, a=0x812d538) at mainproc.c:1323
        pkt = (PACKET *) 0x8131790
        rc = 0
        any_data = 1
        newpkt = 0
[...]

Latest svn on ia32, debian sarge.
-- 
 PGP signed and encrypted  |  .''`.  ** Debian GNU/Linux **
    messages preferred.    | : :' :      The  universal
                           | `. `'      Operating System
 http://www.palfrader.org/ |   `-    http://www.debian.org/