#18126: hostapd-mini can crash / r42852 / ar71xx
--------------------------+------------------------
Reporter: bittorf@… | Owner: developers
Type: defect | Status: closed
Priority: normal | Milestone:
Component: packages | Version: Trunk
Resolution: no_response | Keywords:
--------------------------+------------------------
Comment (by bittorf@…):
another one for r43738:
{{{
bastian@gcc20:~/openwrt$ scripts/remote-gdb
r43738.ar71xx.hostapd.2133.11.1419818493.core staging_dir/target-
mips_34kc_uClibc-0.9.33.2/root-ar71xx/usr/sbin/hostapd
Using target mips_34kc (uClibc-0.9.33.2)
Python Exception <type 'exceptions.ImportError'> No module named gdb:
warning:
Could not load the Python gdb module from
`/home/bastian/openwrt/staging_dir/toolchain-
mips_34kc_gcc-4.8-linaro_uClibc-0.9.33.2/share/gdb/python'.
Limited Python support is available from the _gdb module.
Suggest passing --data-directory=/path/to/gdb/data-directory.
GNU gdb (Linaro GDB) 7.6-2013.05
Copyright (C) 2013 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later
<http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law. Type "show copying"
and "show warranty" for details.
This GDB was configured as "--host=x86_64-linux-gnu --target=mips-openwrt-
linux-uclibc".
For bug reporting instructions, please see:
<http://bugs.launchpad.net/gdb-linaro/>...
Reading symbols from /home/bastian/openwrt/staging_dir/target-
mips_34kc_uClibc-0.9.33.2/root-ar71xx/usr/sbin/wpad...done.
warning: core file may not match specified executable file.
[New LWP 2133]
Core was generated by `/usr/sbin/hostapd -P /var/run/wifi-phy0.pid -B
/var/run/hostapd-phy0.conf'.
Program terminated with signal 11, Segmentation fault.
#0 _vfprintf_internal (stream=0x7faf11b0, format=0xb <Address 0xb out of
bounds>, arg=<optimized out>) at libc/stdio/_vfprintf.c:1881
1881 while (*format && (*format != '%')) {
(gdb) bt full
#0 _vfprintf_internal (stream=0x7faf11b0, format=0xb <Address 0xb out of
bounds>, arg=<optimized out>) at libc/stdio/_vfprintf.c:1881
ppfs = {fmtpos = 0x444304 " wext", info = {prec = 0, width = 0,
spec = 0 L'\000', _flags = 0, pad = 0 L'\000'}, maxposarg = -1,
num_data_args = 0, conv_num = 0, argnumber = "\000\000\000", argtype = {8,
8, 8, 8, 8, 8, 8, 8, 8}, arg = 0x7faf1244, argvalue = {{wc = 0 L'\000',
u = 0, ul = 0, ull = 0, d = 0, ld = 0, p = 0x0}, {wc = 0
L'\000', u = 0, ul = 0, ull = 0, d = 0, ld = 0, p = 0x0}, {wc = 0 L'\000',
u = 0, ul = 0, ull = 0, d = 0, ld = 0, p = 0x0}, {wc = 0 L'\000', u = 0,
ul = 0, ull = 0, d = 0, ld = 0, p = 0x0}, {wc = 0 L'\000', u = 0,
ul = 0, ull = 0, d = 0, ld = 0, p = 0x0}, {wc = 0 L'\000', u
= 0, ul = 0, ull = 0, d = 0, ld = 0, p = 0x0}, {wc = 0 L'\000', u = 0, ul
= 0, ull = 0, d = 0, ld = 0, p = 0x0}, {wc = 0 L'\000', u = 0, ul = 0, ull
= 0, d = 0, ld = 0, p = 0x0}, {wc = 0 L'\000', u = 0,
ul = 0, ull = 0, d = 0, ld = 0, p = 0x0}}}
count = 0
r = <optimized out>
s = 0xb <Address 0xb out of bounds>
#1 0x77664544 in __GI_vsnprintf (buf=<optimized out>, size=100,
format=<optimized out>, arg=<optimized out>) at libc/stdio/vsnprintf.c:66
f = {__modeflags = 208, __ungot_width = "\000\024", __filedes =
-2, __bufstart = 0x7faf12e0 "", __bufend = 0x7faf1344 "wlan0", __bufpos =
0x7faf12e0 "", __bufread = 0x7faf12e0 "", __bufgetc_u = 0x7faf12e0 "",
__bufputc_u = 0x7faf1344 "wlan0", __nextopen = 0x0,
__cookie = 0x7faf11b4, __gcs = {read = 0x0, write = 0x0, seek =
0x0, close = 0x0}, __ungot = L"\x7766ec40\x77673c2c", __state = {__mask =
0 L'\000', __wc = 0 L'\000'}, __user_locking = 1, __lock = {lock = 0, cnt
= 0, owner = 0x0}}
rv = 0
#2 0x77664220 in __GI_snprintf (buf=<optimized out>, size=<optimized
out>, format=<optimized out>) at libc/stdio/snprintf.c:23
arg = 0x7faf1244
rv = 0
#3 0x0041f67c in wpa_driver_nl80211_event_rtm_newlink ()
No symbol table info available.
#4 0x00421800 in netlink_receive_link.isra.0 ()
No symbol table info available.
#5 0x00421884 in netlink_receive ()
No symbol table info available.
#6 0x004112bc in eloop_sock_table_dispatch ()
No symbol table info available.
#7 0x0041192a in eloop_run ()
No symbol table info available.
#8 0x00404512 in hostapd_main ()
No symbol table info available.
#9 0x00403aa4 in main ()
No symbol table info available.
(gdb)
}}}
--
Ticket URL: <https://dev.openwrt.org/ticket/18126#comment:3>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets
