Ethereal-dev: [Ethereal-dev] Ethereal crashes after capturing traffic for some minutes...
Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.
From: Mário Santiago Batista <Mario.Batista@xxxxxxxxxx>
Date: Wed, 16 Oct 2002 14:49:02 +0100
Hello! Since, I think, verson 0.9.6 I have some crashs in ethereal after a will capturing traffic. I don't have a defined patern of the problem... Looks like a reassembly or memory outage (96MB too low ????) problem. Hoping that it might disappear in version 0.9.7 I downloaded the sources, compile them and installed but the crashs continued. The Linux machine I have was these versions of software: [root@monitor /root]# ethereal -v ethereal 0.9.7, with GTK+ 1.2.9, with GLib 1.2.9, with libpcap 0.7, with libz 1.1.3, without UCD SNMP <<ethereal_system_version.txt>> The debug of the one crash (like you advise in the Readme): <<ethereal_debug_core.txt>> Ethereal is an excellent software but it's a petty this crashes that I'm facing. If you need more details about the machine, please tell me. Best regards, Mario Batista OPTIMUS DT/NMD1/NSS/Core IP BB Telephone: +351 931005199 Mobile: +351 931015199 Email Address: mario.batista@xxxxxxxxxx OPTIMUS NSC: +351 931005018 (24 HRS)
[root@monitor /root]# dmesg
Linux version 2.4.2-2 (root@xxxxxxxxxxxxxxxxxxxxxx) (gcc version 2.96 20000731 (Red Hat Linux 7.1 2.96-79)) #1 Sun Apr 8 20:41:30 EDT 2001
BIOS-provided physical RAM map:
BIOS-e820: 000000000009f800 @ 0000000000000000 (usable)
BIOS-e820: 0000000000000800 @ 000000000009f800 (reserved)
BIOS-e820: 0000000000015000 @ 00000000000eb000 (reserved)
BIOS-e820: 0000000005f00000 @ 0000000000100000 (usable)
BIOS-e820: 0000000000080000 @ 00000000fff80000 (reserved)
On node 0 totalpages: 24576
zone(0): 4096 pages.
zone DMA has max 32 cached pages.
zone(1): 20480 pages.
zone Normal has max 160 cached pages.
zone(2): 0 pages.
zone HighMem has max 1 cached pages.
Kernel command line: auto BOOT_IMAGE=linux ro root=302 BOOT_FILE=/boot/vmlinuz-2.4.2-2
Initializing CPU#0
Detected 334.096 MHz processor.
Console: colour VGA+ 80x25
Calibrating delay loop... 666.82 BogoMIPS
Memory: 94252k/98304k available (1365k kernel code, 3664k reserved, 92k data, 236k init, 0k highmem)
Dentry-cache hash table entries: 16384 (order: 5, 131072 bytes)
Buffer-cache hash table entries: 4096 (order: 2, 16384 bytes)
Page-cache hash table entries: 32768 (order: 6, 262144 bytes)
Inode-cache hash table entries: 8192 (order: 4, 65536 bytes)
[root@monitor /root]# gtk-config --version
1.2.9
VFS: Diskquotas version dquot_6.5.0 initialized
CPU: Before vendor init, caps: 0183f9ff 00000000 00000000, vendor = 0
CPU: L1 I cache: 16K, L1 D cache: 16K
CPU: L2 cache: 128K
Intel machine check architecture supported.
Intel machine check reporting enabled on CPU#0.
CPU: After vendor init, caps: 0183f9ff 00000000 00000000 00000000
CPU: After generic, caps: 0183f9ff 00000000 00000000 00000000
CPU: Common caps: 0183f9ff 00000000 00000000 00000000
CPU: Intel Celeron (Mendocino) stepping 00
Enabling fast FPU save and restore... done.
Checking 'hlt' instruction... OK.
POSIX conformance testing by UNIFIX
mtrr: v1.37 (20001109) Richard Gooch (rgooch@xxxxxxxxxxxxx)
mtrr: detected mtrr type: Intel
PCI: PCI BIOS revision 2.10 entry at 0xfd9c2, last bus=1
PCI: Using configuration type 1
PCI: Probing PCI hardware
Unknown bridge resource 0: assuming transparent
PCI: Using IRQ router PIIX [8086/7110] at 00:04.0
Limiting direct PCI/PCI transfers.
isapnp: Scanning for PnP cards...
isapnp: No Plug & Play device found
Linux NET4.0 for Linux 2.4
Based upon Swansea University Computer Society NET3.039
Initializing RT netlink socket
apm: BIOS version 1.2 Flags 0x03 (Driver version 1.14)
Starting kswapd v1.8
pty: 256 Unix98 ptys configured
block: queued sectors max/low 62429kB/20809kB, 192 slots per queue
RAMDISK driver initialized: 16 RAM disks of 4096K size 1024 blocksize
Uniform Multi-Platform E-IDE driver Revision: 6.31
ide: Assuming 33MHz system bus speed for PIO modes; override with idebus=xx
PIIX4: IDE controller on PCI bus 00 dev 21
PIIX4: chipset revision 1
PIIX4: not 100% native mode: will probe irqs later
ide0: BM-DMA at 0xfcb0-0xfcb7, BIOS settings: hda:DMA, hdb:pio
ide1: BM-DMA at 0xfcb8-0xfcbf, BIOS settings: hdc:pio, hdd:pio
hda: QUANTUM FIREBALLlct20 04, ATA DISK drive
ide0 at 0x1f0-0x1f7,0x3f6 on irq 14
hda: 8405775 sectors (4304 MB) w/418KiB Cache, CHS=555/240/63, UDMA(33)
Partition check:
hda: hda1 hda2 hda3 < hda5 >
Floppy drive(s): fd0 is 1.44M
FDC 0 is a National Semiconductor PC87306
Serial driver version 5.02 (2000-08-09) with MANY_PORTS MULTIPORT SHARE_IRQ SERIAL_PCI ISAPNP enabled
ttyS00 at 0x03f8 (irq = 4) is a 16550A
Real Time Clock Driver v1.10d
md driver 0.90.0 MAX_MD_DEVS=256, MD_SB_DISKS=27
md.c: sizeof(mdp_super_t) = 4096
autodetecting RAID arrays
autorun ...
... autorun DONE.
NET4: Linux TCP/IP 1.0 for NET4.0
IP Protocols: ICMP, UDP, TCP, IGMP
IP: routing cache hash table of 512 buckets, 4Kbytes
TCP: Hash tables configured (established 8192 bind 8192)
Linux IP multicast router 0.06 plus PIM-SM
NET4: Unix domain sockets 1.0/SMP for Linux NET4.0.
VFS: Mounted root (ext2 filesystem) readonly.
Freeing unused kernel memory: 236k freed
Adding Swap: 68000k swap-space (priority -1)
usb.c: registered new driver usbdevfs
usb.c: registered new driver hub
usb-uhci.c: $Revision: 1.251 $ time 20:53:29 Apr 8 2001
usb-uhci.c: High bandwidth mode enabled
PCI: Found IRQ 11 for device 00:04.2
usb-uhci.c: USB UHCI at I/O 0xfce0, IRQ 11
usb-uhci.c: Detected 2 ports
usb.c: new USB bus registered, assigned bus number 1
hub.c: USB hub found
hub.c: 2 ports detected
ip_conntrack (768 buckets, 6144 max)
PCI: Found IRQ 5 for device 00:0d.0
3c59x.c:LK1.1.13 27 Jan 2001 Donald Becker and others. http://www.scyld.com/network/vortex.html
See Documentation/networking/vortex.txt
eth0: 3Com PCI 3c905 Boomerang 100baseTx at 0xfc40, 00:60:08:5d:9c:c7, IRQ 5
product code 4b4b rev 00.0 date 10-08-97
8K word-wide RAM 3:5 Rx:Tx split, autoselect/MII interface.
MII transceiver found at address 24, status 786f.
Enabling bus-master transmits and whole-frame receives.
eth0: scatter/gather disabled. h/w checksums disabled
eth0: first available media type: MII
eepro100.c:v1.09j-t 9/29/99 Donald Becker http://cesdis.gsfc.nasa.gov/linux/drivers/eepro100.html
eepro100.c: $Revision: 1.36 $ 2000/11/17 Modified by Andrey V. Savochkin <saw@xxxxxxxxxxxxx> and others
PCI: Found IRQ 10 for device 00:0e.0
eth1: OEM i82557/i82558 10/100 Ethernet, 00:80:5F:B7:EC:02, I/O at 0xfcc0, IRQ 10.
Receiver lock-up bug exists -- enabling work-around.
Board assembly 692290-002, Physical connectors present: RJ45
Primary interface chip i82555 PHY #1.
General self-test: passed.
Serial sub-system self-test: passed.
Internal registers self-test: passed.
ROM checksum self-test: passed (0x24c9f043).
Receiver lock-up workaround activated.
device eth1 entered promiscuous mode[root@monitor /root]# gdb ethereal core
GNU gdb 5.0rh-5 Red Hat Linux 7.1
Copyright 2001 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB. Type "show warranty" for details.
This GDB was configured as "i386-redhat-linux"...
Core was generated by `ethereal'.
Program terminated with signal 11, Segmentation fault.
Reading symbols from /usr/local/lib/ethereal/plugins/0.9.7/docsis.so...done.
Loaded symbols for /usr/local/lib/ethereal/plugins/0.9.7/docsis.so
Reading symbols from /usr/local/lib/ethereal/plugins/0.9.7/cosnaming.so...done.
Loaded symbols for /usr/local/lib/ethereal/plugins/0.9.7/cosnaming.so
Reading symbols from /usr/local/lib/ethereal/plugins/0.9.7/coseventcomm.so...done.
Loaded symbols for /usr/local/lib/ethereal/plugins/0.9.7/coseventcomm.so
Reading symbols from /usr/local/lib/ethereal/plugins/0.9.7/gryphon.so...done.
Loaded symbols for /usr/local/lib/ethereal/plugins/0.9.7/gryphon.so
Reading symbols from /usr/local/lib/ethereal/plugins/0.9.7/mgcp.so...done.
Loaded symbols for /usr/local/lib/ethereal/plugins/0.9.7/mgcp.so
Reading symbols from /usr/lib/libcrypto.so.1...done.
Loaded symbols for /usr/lib/libcrypto.so.1
Reading symbols from /usr/lib/libgtk-1.2.so.0...done.
Loaded symbols for /usr/lib/libgtk-1.2.so.0
Reading symbols from /usr/lib/libgdk-1.2.so.0...done.
Loaded symbols for /usr/lib/libgdk-1.2.so.0
Reading symbols from /usr/lib/libgmodule-1.2.so.0...done.
Loaded symbols for /usr/lib/libgmodule-1.2.so.0
Reading symbols from /usr/lib/libglib-1.2.so.0...done.
Loaded symbols for /usr/lib/libglib-1.2.so.0
Reading symbols from /lib/libdl.so.2...done.
Loaded symbols for /lib/libdl.so.2
Reading symbols from /usr/X11R6/lib/libXi.so.6...done.
Loaded symbols for /usr/X11R6/lib/libXi.so.6
Reading symbols from /usr/X11R6/lib/libXext.so.6...done.
Loaded symbols for /usr/X11R6/lib/libXext.so.6
Reading symbols from /usr/X11R6/lib/libX11.so.6...done.
Loaded symbols for /usr/X11R6/lib/libX11.so.6
Reading symbols from /lib/i686/libm.so.6...done.
Loaded symbols for /lib/i686/libm.so.6
Reading symbols from /usr/lib/libz.so.1...done.
Loaded symbols for /usr/lib/libz.so.1
Reading symbols from /lib/i686/libc.so.6...done.
Loaded symbols for /lib/i686/libc.so.6
Reading symbols from /lib/ld-linux.so.2...done.
Loaded symbols for /lib/ld-linux.so.2
Reading symbols from /usr/lib/gconv/ISO8859-1.so...done.
Loaded symbols for /usr/lib/gconv/ISO8859-1.so
Reading symbols from /lib/libnss_files.so.2...done.
Loaded symbols for /lib/libnss_files.so.2
Reading symbols from /lib/libnss_nisplus.so.2...done.
Loaded symbols for /lib/libnss_nisplus.so.2
Reading symbols from /lib/libnsl.so.1...done.
Loaded symbols for /lib/libnsl.so.1
#0 0x081caea9 in fragment_add_seq_work (fd_head=0x869b308, tvb=0x8b74e08, offset=4, pinfo=0x8c2c588, frag_number=4,
frag_data_len=454, more_frags=0) at reassemble.c:735
735 reassemble.c: No such file or directory.
in reassemble.c
(gdb) backtrace
#0 0x081caea9 in fragment_add_seq_work (fd_head=0x869b308, tvb=0x8b74e08, offset=4, pinfo=0x8c2c588, frag_number=4,
frag_data_len=454, more_frags=0) at reassemble.c:735
#1 0x081cb1fb in fragment_add_seq (tvb=0x8b74e08, offset=4, pinfo=0x8c2c588, id=49968, fragment_table=0x861dd48, frag_number=4,
frag_data_len=454, more_frags=0) at reassemble.c:902
#2 0x081b6726 in dissect_wtp_common (tvb=0x8b74e08, pinfo=0x8c2c588, tree=0x0) at packet-wtp.c:610
#3 0x0822431b in dissector_try_port (sub_dissectors=0x8513d80, port=9201, tvb=0x8b74e08, pinfo=0x8c2c588, tree=0x0)
at packet.c:574
#4 0x081aa861 in decode_udp_ports (tvb=0x8b74dd4, offset=8, pinfo=0x8c2c588, tree=0x0, uh_sport=9201, uh_dport=4663)
at packet-udp.c:120
#5 0x081aacaa in dissect_udp (tvb=0x8b74dd4, pinfo=0x8c2c588, tree=0x0) at packet-udp.c:245
#6 0x0822431b in dissector_try_port (sub_dissectors=0x850bb90, port=17, tvb=0x8b74dd4, pinfo=0x8c2c588, tree=0x0) at packet.c:574
#7 0x080eedef in dissect_ip (tvb=0x8b74da0, pinfo=0x8c2c588, tree=0x0) at packet-ip.c:1055
#8 0x08224d2d in call_dissector (handle=0x850bca8, tvb=0x8b74da0, pinfo=0x8c2c588, tree=0x0) at packet.c:1094
#9 0x080e0072 in dissect_gtpv0 (tvb=0x8b74d6c, pinfo=0x8c2c588, tree=0x0) at packet-gtp.c:4933
#10 0x0822431b in dissector_try_port (sub_dissectors=0x8513d80, port=3386, tvb=0x8b74d6c, pinfo=0x8c2c588, tree=0x0)
at packet.c:574
#11 0x081aa840 in decode_udp_ports (tvb=0x8b74d38, offset=8, pinfo=0x8c2c588, tree=0x0, uh_sport=3386, uh_dport=3386)
at packet-udp.c:117
#12 0x081aacaa in dissect_udp (tvb=0x8b74d38, pinfo=0x8c2c588, tree=0x0) at packet-udp.c:245
#13 0x0822431b in dissector_try_port (sub_dissectors=0x850bb90, port=17, tvb=0x8b74d38, pinfo=0x8c2c588, tree=0x0) at packet.c:574
#14 0x080eedef in dissect_ip (tvb=0x8b7c4d8, pinfo=0x8c2c588, tree=0x0) at packet-ip.c:1055
#15 0x0822431b in dissector_try_port (sub_dissectors=0x8500d08, port=2048, tvb=0x8b7c4d8, pinfo=0x8c2c588, tree=0x0)
at packet.c:574
#16 0x080cbea7 in ethertype (etype=2048, tvb=0x8b7c470, offset_after_etype=14, pinfo=0x8c2c588, tree=0x0, fh_tree=0x0,
etype_id=2110, trailer_id=2112) at packet-ethertype.c:155
#17 0x080cbc46 in dissect_eth (tvb=0x8b7c470, pinfo=0x8c2c588, tree=0x0) at packet-eth.c:237
#18 0x0822431b in dissector_try_port (sub_dissectors=0x85025f0, port=1, tvb=0x8b7c470, pinfo=0x8c2c588, tree=0x0) at packet.c:574
#19 0x080d2728 in dissect_frame (tvb=0x8b7c470, pinfo=0x8c2c588, tree=0x0) at packet-frame.c:173
#20 0x08224d2d in call_dissector (handle=0x8502680, tvb=0x8b7c470, pinfo=0x8c2c588, tree=0x0) at packet.c:1094
#21 0x08223f76 in dissect_packet (edt=0x8c2c580, pseudo_header=0x861a79c, pd=0x86a4008 "", fd=0x8c2ddd8, cinfo=0x84f78b8)
at packet.c:299
#22 0x081d1952 in add_packet_to_packet_list (fdata=0x8c2ddd8, cf=0x84e77a0, pseudo_header=0x861a79c, buf=0x86a4008 "", refilter=1)
at file.c:680
#23 0x081d1c10 in read_packet (cf=0x84e77a0, offset=4151716) at file.c:823
#24 0x081d1704 in continue_tail_cap_file (cf=0x84e77a0, to_read=58, err=0xbfffe6fc) at file.c:516
#25 0x081cf0dc in cap_file_input_cb (data=0x84e77a0, source=7, condition=GDK_INPUT_READ) at capture.c:854
#26 0x4025db46 in gdk_io_invoke () at eval.c:41
#27 0x4029001e in g_io_unix_dispatch () at eval.c:41
#28 0x402917f3 in g_main_dispatch () at eval.c:41
#29 0x40291dd9 in g_main_iterate () at eval.c:41
#30 0x40291f8c in g_main_run () at eval.c:41
#31 0x401a5803 in gtk_main () at eval.c:41
#32 0x0820a316 in main (argc=0, argv=0xbffffac0) at main.c:2024
#33 0x403ee177 in __libc_start_main (main=0x8209230 <main>, argc=1, ubp_av=0xbffffabc, init=0x8067d2c <_init>,
fini=0x823e880 <_fini>, rtld_fini=0x4000e184 <_dl_fini>, stack_end=0xbffffaac) at ../sysdeps/generic/libc-start.c:129
(gdb) quit
- Follow-Ups:
- Prev by Date: [Ethereal-dev] SSH dissector - can anyone complete?
- Next by Date: Re: [Ethereal-dev] tapping commentary
- Previous by thread: [Ethereal-dev] SSH dissector - can anyone complete?
- Next by thread: Re: [Ethereal-dev] Ethereal crashes after capturing traffic for some minutes...
- Index(es):