https://bugzilla.novell.com/show_bug.cgi?id=639111
https://bugzilla.novell.com/show_bug.cgi?id=639111#c5
Harald Koenig
Harald,
The interface __stack_chk_fail() shall abort the function that called it with a message that a stack overflow has been detected.
So I think it's caused by print_event_stream. Do you have another AP? Is it crash for other APs?
I tried in my laptop, it's not crash.
correct. I'm on a TeX conference right now and there are multiple APs around, and only connecting to one of them (essid "context") will crash iwevent, all others seem to be fine. how can I get/provide more information for that AP ? I set a break point to print_event_stream() and stepped through that funtion using "n"ext in gdb. the crash happens after leaving print_event_stream() : (gdb) Continuing. 10:00:43.328730 wlan0 Set ESSID:"context" Breakpoint 1, print_event_stream (ifindex=3, data=0x7fffffffb790 "\265", len=181) at iwevent.c:505 505 { (gdb) Continuing. 09:54:08.527395 wlan0 Set ESSID:"context" Breakpoint 1, print_event_stream (ifindex=3, data=0x7fffffffb790 "\265", len=181) at iwevent.c:505 505 { (gdb) n 516 wireless_data = iw_get_interface_data(ifindex); (gdb) 505 { (gdb) 516 wireless_data = iw_get_interface_data(ifindex); (gdb) 521 gettimeofday(&recv_time, &tz); (gdb) 522 iw_print_timeval(buffer, sizeof(buffer), &recv_time, &tz); (gdb) 524 iw_init_event_stream(&stream, data, len); (gdb) 522 iw_print_timeval(buffer, sizeof(buffer), &recv_time, &tz); (gdb) 508 int i = 0; (gdb) 522 iw_print_timeval(buffer, sizeof(buffer), &recv_time, &tz); (gdb) 524 iw_init_event_stream(&stream, data, len); (gdb) 533 printf("%s %-8.16s ", buffer, wireless_data->ifname); (gdb) 537 print_event_token(&iwe, (gdb) 533 printf("%s %-8.16s ", buffer, wireless_data->ifname); (gdb) 537 print_event_token(&iwe, (gdb) 528 ret = iw_extract_event_stream(&stream, &iwe, (gdb) 530 if(ret != 0) (gdb) 528 ret = iw_extract_event_stream(&stream, &iwe, (gdb) 530 if(ret != 0) (gdb) 532 if(i++ == 0) (gdb) 533 printf("%s %-8.16s ", buffer, wireless_data->ifname); (gdb) 536 if(ret > 0) (gdb) 537 print_event_token(&iwe, (gdb) 09:54:14.080828 wlan0 Association Response IEs:010882848B962430486C32040C1218602D1A1C181AFFFFFF00000000000000D80007000000000000000000003D160B001700000000000000000000000000000 542 fflush(stdout); (gdb) n 532 if(i++ == 0) (gdb) n 542 fflush(stdout); (gdb) n 528 ret = iw_extract_event_stream(&stream, &iwe, (gdb) n 530 if(ret != 0) (gdb) 528 ret = iw_extract_event_stream(&stream, &iwe, (gdb) 530 if(ret != 0) (gdb) 547 return(0); (gdb) 548 } (gdb) *** stack smashing detected ***: /usr/sbin/iwevent terminated ======= Backtrace: ========= /lib64/libc.so.6(__fortify_fail+0x37)[0x7ffff7705067] /lib64/libc.so.6(__fortify_fail+0x0)[0x7ffff7705030] /usr/sbin/iwevent[0x402131] /usr/sbin/iwevent[0x402265] /usr/sbin/iwevent[0x4026a2] /lib64/libc.so.6(__libc_start_main+0xfd)[0x7ffff763cb7d] /usr/sbin/iwevent[0x401499] stepping through iw_extract_event_stream() does not give me a clue either: 528 ret = iw_extract_event_stream(&stream, &iwe, (gdb) s iw_extract_event_stream (stream=0x7fffffffb450, iwe=0x7fffffffb6e0, we_version=22) at iwlib.c:2850 2850 { (gdb) 2859 if((stream->current + IW_EV_LCP_PK_LEN) > stream->end) (gdb) 2860 return(0); (gdb) 3055 } (gdb) print_event_stream (ifindex=<value optimized out>, data=<value optimized out>, len=<value optimized out>) at iwevent.c:530 530 if(ret != 0) (gdb) 528 ret = iw_extract_event_stream(&stream, &iwe, (gdb) 530 if(ret != 0) (gdb) 547 return(0); (gdb) 548 } (gdb) *** stack smashing detected ***: /usr/sbin/iwevent terminated ======= Backtrace: ========= /lib64/libc.so.6(__fortify_fail+0x37)[0x7ffff7705067] /lib64/libc.so.6(__fortify_fail+0x0)[0x7ffff7705030] -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.