#229 lsof Segmentation fault on AIX 5.3

[Anonymous]

We are using lsof-4.61-3.aix5.1.ppc.rpm on several machines from AIX 5.1 to 5.3, but now on two LPARs (p570) I get only "Segmentation fault (core dumped)". So I tried lsof-4.61-4.aix5.3.ppc.rpm from http://www-03.ibm.com/servers/aix/products/aixos/linux/download.html
but I get the same segfault.
I is AIX 5300-04-03, 64bit.
truss ends here:
...
__kdb_format_print_init(0x0000000000000004, 0x0FFFFFFFFFF7CE00, 0x0000000000000200, 0x800000000000D0B2, 0x0000000000000000, 0x00000000000000B6, 0x0000000110001250, 0x0000000000000000) = 0x0000000000000200
Received signal #11, SIGSEGV [default]
*** process killed ***

[Jeffery]

Logged In: YES
user_id=1405318
Originator: NO

I get the same thing, but only on certain flags. For example:

root@hostname:/tmp
# lsof >/dev/null 2>&1
root@hostname:/tmp
# lsof -i:80
Segmentation fault(coredump)

Here is the stack trace & some other info.

root@cpaiqp4o:/tmp
# dbx /opt/freeware/sbin/lsof64 core
Type 'help' for help.
[using memory image in core]
reading symbolic information ...

Segmentation fault in . at 0x10001235c
0x10001235c (???) 7fbc482a ldx r29,r28,r9
(dbx) where
gather_proc_info() at 0x10001235c
main(??, ??) at 0x100001ae8

(dbx) kthread
537287 TSRUN k
(dbx) kthread info
Info for tid: 537287
{
-Identification & Scheduler Info------------------------------
ti_tid: 537287 ti_pid: 250598
ti_pri: 75 ti_policy: 0
ti_state: TSRUN (before stopping)
ti_flag: TSIGAVAIL
ti_scount: 1 ti_cpu: 31
ti_cpuid: -1 ti_affinity: 4
ti_wtype: TNOWAIT ti_wchan: 0x0000000000000000

----------------Signal Management-----------------------------
ti_sigmask: <none>

ti_sig: <none>

ti_code: 0x000000000b000032 ti_scp: 0x0ffffffffff7d220
ti_cursig: <none>
ti_oldmask: <none>

ti_stkb: 0x0ffffffffe000000 ti_ucontext: 0x0ffffffffff7d220
ti_sigsp: 0x0000000000000000 ti_sigssz: 0x0000000000000000

-----------------------------------User Thread Mgmt-----------
ti_userdata: 0x0000000000000000 ti_errnopp: 0x0fffffffffffffe8
ti_ustk: 0x0ffffffffff7d3d0

------------------------------------------------Miscellaneous-
ti_ticks: 31 ti_dispct: 17
ti_fpuct: 13 ti_watch: <none>
ti_ru: (use kthread ru) ti_nice: 0x00000014
}

(dbx) listi
0x10001235c (???) 7fbc482a ldx r29,r28,r9
0x100012360 (???) 2c3d0000 cmpi cr0,0x1,r29,0x0
0x100012364 (???) 4182005c beq 0x1000123c0 (???)
0x100012368 (???) 38600000 li r3,0x0
0x10001236c (???) 7fe4fb78 mr r4,r31
0x100012370 (???) 4bff9c35 bl 0x10000bfa4 (???)
0x100012374 (???) 60000000 ori r0,r0,0x0
0x100012378 (???) 7fa3eb78 mr r3,r29
0x10001237c (???) 48004265 bl 0x1000165e0 (???)
0x100012380 (???) 60000000 ori r0,r0,0x0

(dbx) map abbr
Entry 1: /opt/freeware/sbin/lsof64
Entry 2: /usr/ccs/bin/usla64
Entry 3: /usr/lib/libiconv.a(shr4_64.o)
Entry 4: /usr/lib/libi18n.a(shr_64.o)
Entry 5: /usr/lib/nls/loc/en_US__64
Entry 6: /usr/lib/libcrypt.a(shr_64.o)
Entry 7: /usr/lib/libc.a(shr_64.o)

(dbx) proc
{
-Identification/Authentication Info---------------------------
pi_pid: 250598 pi_sid: 332462
pi_ppid: 332462 pi_pgrp: 0
pi_uid: 0 pi_suid: 0

---------------Controlling TTY Info---------------------------
pi_ttyp: 250598 pi_ttyd: 0x8000001400000002
pi_ttympx: 0x0000000000000000

-----------------------------Scheduler Information------------
pi_nice: 0x00000014 pi_state: SACTIVE
pi_flags: SLOAD | SNOSWAP | SEXECED
pi_flags2: S64BIT | SPROJFIXED
pi_thcount: 1 pi_cpu: 0
pi_pri: 67

---------------------------------------------File Management--
pi_maxofile: 0x00000005 pi_cmask: 0x0022
pi_cdir: 0xf1000100184d1aa0 pi_rdir: 0x0000000000000000
pi_comm: "lsof64"

----------------------------------Memory----------------------
pi_adspace: 0x0000000092df1510
pi_majflt: 0x0000000000000000 pi_minflt: 0x00000000000010a7
pi_repage: 0x0000000000000000 pi_size: 0x0000000000000257
pi_utime: N/A pi_stime: N/A

-------Credentials, Accounting, Profiling & Resource Limits---
pi_cred: (use proc cred)
pi_ru: (use proc ru)
pi_cru: (use proc cru)
pi_ioch: 0x00000000004ac2de pi_irss: 0x00000000000025b0
pi_start: Wed Dec 12 15:36:45 2007
pi_rlimit: (use proc rlimit)

-Memory Usage-------------------------------------------------
pi_drss: 0x0000000000000230 pi_trss: 0x0000000000000031
pi_dvm: 0x0000000000000230 pi_pi_prm: 0x0000000000000000
pi_tsize: 0x00000000000269ad pi_dsize: 0x00000000001f71a0
pi_sdsize: 0x0000000000000000

------------------Signal Management---------------------------
pi_signal: (use proc signal) pi_sigflags: (use proc sigflags)
pi_sig: <none>

---------------------------------WLM Information--------------
pi_classname: <none>
pi_tag: <none>
pi_chk_utime: N/A pi_chk_ctime: N/A
}

(dbx) registers
$r0:0x0000000000009b57 $stkp:0x0ffffffffff7d6d0 $toc:0x0000000110002770
$r3:0x0000000000000000 $r4:0x000000011000b1e3 $r5:0x0000000000000000
$r6:0x090000000020eb14 $r7:0x0000000000000000 $r8:0x0000000000000000
$r9:0x000000011015ca90 $r10:0x0000008080808080 $r11:0x000000011000af50
$r12:0x0000000044244228 $r13:0xbadc0ffee0ddf00d $r14:0x0000000000000002
$r15:0x0000000000000000 $r16:0x0000000000000000 $r17:0x0000000000000000
$r18:0x00000001100010a0 $r19:0x0000000000000000 $r20:0x0000000110001158
$r21:0x0000000110000ce8 $r22:0x00000001100010a8 $r23:0x000000000000fffe
$r24:0x0000000110005f90 $r25:0x0fffffffffffd740 $r26:0x00000000000820e0
$r27:0x0000000000000004 $r28:0x000000000009b570 $r29:0x0000000000000000
$r30:0x000000011010c4e0 $r31:0x0000000000009b57
$iar:0x000000010001235c $msr:0xa00000000000d0b2 $cr:0x80244424
$link:0x0000000100012380 $ctr:0x0000000000000000 $xer:0x20000050
$mq:0x00000000

Condition status = 0:l 2:e 3:g 4:g 5:g 6:e 7:g
[unset $noflregs to view floating point registers]
[unset $novregs to view vector registers]
in . at 0x10001235c
0x10001235c (???) 7fbc482a ldx r29,r28,r9