Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 9463] Crash when change Profiles

Wireshark-bugs: [Wireshark-bugs] [Bug 9463] Crash when change Profiles

Date: Sat, 22 Mar 2014 16:46:05 +0000
Comment # 5 on bug 9463 from Peter Wu
The problem still exists with v1.11.3-rc1-2032-g7bbb3ac. Reproducable in two
ways:

 1. wireshark -r some.pcap -P persconf:/tmp/an-empty-dir
 2. Create new profile (-> crash), press OK.

 1. New profile already exists.
 2. Switch profile (click on profile, chose different one).

Somewhere the memory is freed and then re-used for other purposes... and then
it all explodes.


(create new profile)

(gdb) p *session
$21 = {data = "" get_frame_ts = 0x604201047fa0, get_interface_name
= 0x604201047ec0, get_user_comment = 0x40}
(gdb) bt
#0  epan_get_frame_ts (session=0x604200fe8440, frame_num=1) at epan/epan.c:184
#1  0x00007fffe929c9a2 in frame_delta_abs_time (epan=0x604200fe8440,
fdata=0x60a800000858, prev_num=1, delta=0x7fffffffcca0) at
epan/frame_data.c:183
#2  0x00007fffe927c3fc in col_set_rel_time (fd=0x60a800000858, cinfo=0xbcb760
<cfile+480>, col=1) at epan/column-utils.c:1095
#3  0x00007fffe927ecd1 in col_set_cls_time (fd=0x60a800000858, cinfo=0xbcb760
<cfile+480>, col=1) at epan/column-utils.c:1435
#4  0x00007fffe927ee75 in col_set_fmt_time (fd=0x60a800000858, cinfo=0xbcb760
<cfile+480>, fmt=62, col=1) at epan/column-utils.c:1477
#5  0x00007fffe9282328 in col_fill_in_frame_data (fd=0x60a800000858,
cinfo=0xbcb760 <cfile+480>, col=1, fill_col_exprs=0) at
epan/column-utils.c:1816
#6  0x0000000000622cf6 in packet_list_get_widest_column_string
(packet_list=0x60520023c460, col=1) at ui/gtk/packet_list_store.c:1216
#7  0x000000000049dfd9 in packet_list_resize_column (col=1) at
ui/gtk/packet_list.c:851
#8  0x000000000042f57b in cf_timestamp_auto_precision (cf=0xbcb580 <cfile>) at
file.c:267
#9  0x000000000048a14c in menu_recent_read_finished () at
ui/gtk/main_menubar.c:4675
#10 0x000000000047f9d3 in change_configuration_profile
(profile_name=0x60040050b3d0 "New profile") at ui/gtk/main.c:3933
#11 0x00000000004c13ce in profile_select (main_w=0x607200eb72b0,
profile_l=0x6082000682b0, destroy=1) at ui/gtk/profile_dlg.c:117
#12 0x00000000004c1494 in profile_apply (main_w=0x607200eb72b0,
profile_l=0x6082000682b0, destroy=1) at ui/gtk/profile_dlg.c:145
#13 0x00000000004c1504 in profile_dlg_ok_cb (ok_bt=0x60620024b900, data="" at
ui/gtk/profile_dlg.c:157


(switch between existing profiles)

Breakpoint 5, epan_get_frame_ts (session=0x6042010050c0, frame_num=1) at
epan/epan.c:184
184             const nstime_t *abs_ts = NULL;
(gdb) p *session
$10 = {data = "" <cfile>, get_frame_ts = 0x42f7d3 <ws_get_frame_ts>,
get_interface_name = 0x45664e <cap_file_get_interface_name>, get_user_comment =
0x42f985 <ws_get_user_comment>}

(gdb) break epan_get_frame_ts if session->get_frame_ts != ws_get_frame_ts
Breakpoint 7 at 0x7fffe928f50e: file epan/epan.c, line 184.

(gdb) watch *0x6042010050c8
Hardware watchpoint 8: *0x6042010050c8
(gdb) info break
Num     Type           Disp Enb Address            What
7       breakpoint     keep y   0x00007fffe928f50e in epan_get_frame_ts at
epan/epan.c:184
        stop only if session->get_frame_ts != ws_get_frame_ts
8       hw watchpoint  keep y                      *0x6042010050c8
(gdb) c

Hardware watchpoint 8: *0x6042010050c8

Old value = 4388819
New value = 0
0x00007ffff4bb0f49 in g_slice_free1 () from /usr/lib/libglib-2.0.so.0
(gdb) bt
#0  0x00007ffff4bb0f49 in g_slice_free1 () from /usr/lib/libglib-2.0.so.0
#1  0x00007fffe928f5dc in epan_free (session=0x6042010050c0) at epan/epan.c:202
#2  0x0000000000435ff7 in rescan_packets (cf=0xbcb580 <cfile>, action=""
"Reprocessing", action_item=0x6e6fc0 "all packets", redissect=1) at file.c:1887
#3  0x0000000000435ad5 in cf_redissect_packets (cf=0xbcb580 <cfile>) at
file.c:1748
#4  0x000000000047fa16 in redissect_packets () at ui/gtk/main.c:3942
#5  0x000000000049b23d in packet_list_recreate () at ui/gtk/packet_list.c:142
#6  0x000000000047f987 in change_configuration_profile
(profile_name=0x6004003ae650 "Strange") at ui/gtk/main.c:3928
#7  0x00000000004c3437 in select_profile_cb (w=0x6062001e3250,
data="" at ui/gtk/profile_dlg.c:637
...
(gdb) c
Hardware watchpoint 8: *0x6042010050c8

Old value = 0
New value = 1
proto_tree_set_visible (tree=0x60420103ef00, visible=1) at epan/proto.c:707
707             return old_visible;
(gdb) p tree->tree_data
$18 = (tree_data_t *) 0x6042010050c0
(gdb) c
Continuing.
Hardware watchpoint 8: *0x6042010050c8

Old value = 16658784
New value = 0
0x00007ffff4b916ff in g_list_remove () from /usr/lib/libglib-2.0.so.0
(gdb) c
Continuing.
Hardware watchpoint 8: *0x6042010050c8

Old value = 0
New value = 16568736
0x00007ffff4b91520 in g_list_prepend () from /usr/lib/libglib-2.0.so.0
(gdb) c
Continuing.
Hardware watchpoint 8: *0x6042010050c8

Old value = 16568736
New value = 0
0x00007ffff4b916ff in g_list_remove () from /usr/lib/libglib-2.0.so.0
(gdb) 
Continuing.
Hardware watchpoint 8: *0x6042010050c8

Old value = 0
New value = 16568736
0x00007ffff4b91520 in g_list_prepend () from /usr/lib/libglib-2.0.so.0
(gdb) 
Continuing.

Breakpoint 7, epan_get_frame_ts (session=0x6042010050c0, frame_num=1) at
epan/epan.c:184
184             const nstime_t *abs_ts = NULL;
(gdb) p *session
$19 = {data = "" get_frame_ts = 0x604200fcd1a0, get_interface_name
= 0x6042010098a0, get_user_comment = 0x6034000c3318}
(gdb) bt
#0  epan_get_frame_ts (session=0x6042010050c0, frame_num=1) at epan/epan.c:184
#1  0x00007fffe929c9a2 in frame_delta_abs_time (epan=0x6042010050c0,
fdata=0x60a800000858, prev_num=1, delta=0x7fffffffd030) at
epan/frame_data.c:183
#2  0x00007fffe927c3fc in col_set_rel_time (fd=0x60a800000858, cinfo=0xbcb760
<cfile+480>, col=1) at epan/column-utils.c:1095
#3  0x00007fffe927ecd1 in col_set_cls_time (fd=0x60a800000858, cinfo=0xbcb760
<cfile+480>, col=1) at epan/column-utils.c:1435
#4  0x00007fffe927ee75 in col_set_fmt_time (fd=0x60a800000858, cinfo=0xbcb760
<cfile+480>, fmt=62, col=1) at epan/column-utils.c:1477
#5  0x00007fffe9282328 in col_fill_in_frame_data (fd=0x60a800000858,
cinfo=0xbcb760 <cfile+480>, col=1, fill_col_exprs=0) at
epan/column-utils.c:1816
#6  0x0000000000622cf6 in packet_list_get_widest_column_string
(packet_list=0x60520009f6a0, col=1) at ui/gtk/packet_list_store.c:1216
#7  0x000000000049dfd9 in packet_list_resize_column (col=1) at
ui/gtk/packet_list.c:851
#8  0x000000000042f57b in cf_timestamp_auto_precision (cf=0xbcb580 <cfile>) at
file.c:267
#9  0x000000000048a14c in menu_recent_read_finished () at
ui/gtk/main_menubar.c:4675
#10 0x000000000047f9d3 in change_configuration_profile
(profile_name=0x6004003ae650 "Strange") at ui/gtk/main.c:3933
#11 0x00000000004c3437 in select_profile_cb (w=0x6062001e3250,
data="" at ui/gtk/profile_dlg.c:637
You are receiving this mail because:
You are watching all bug changes.
Prev by Date: [Wireshark-bugs] [Bug 9918] New: trivial-typo-in-a-comment : your'e -> you're
Next by Date: [Wireshark-bugs] [Bug 9918] trivial-typo-in-a-comment : your'e -> you're
Previous by thread: [Wireshark-bugs] [Bug 9918] trivial-typo-in-a-comment : your'e -> you're
Next by thread: [Wireshark-bugs] [Bug 9463] Crash when change Profiles
Index(es):
- Date
- Thread