FS#45031 - [iproute2] tc broken in 4.0.0-1

Attached to Project: Arch Linux
Opened by hamelg (hamelg) - Wednesday, 20 May 2015, 18:21 GMT
Last edited by Ronald van Haren (pressh) - Thursday, 21 May 2015, 12:14 GMT
Task Type Bug Report
Category Packages: Core
Status Closed
Assigned To Ronald van Haren (pressh)
Architecture All
Severity Medium
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 1
Private No

Details

Description:
After upgrading iproute2 to 4.0.0-1, the tc utility makes core dumps with the "show" command.


Additional info:

with the previous iproute2 3.19.0-1.
# tc qdisc show
qdisc fq_codel 0: dev eth0 root refcnt 2 limit 10240p flows 1024 quantum 1514 target 5.0ms interval 100.0ms ecn
qdisc hfsc 100: dev br0 root refcnt 2 default 5
qdisc ingress ffff: dev br0 parent ffff:fff1 ----------------
qdisc fq_codel 0: dev vethT9WLVU root refcnt 2 limit 10240p flows 1024 quantum 1514 target 5.0ms interval 100.0ms ecn
qdisc fq_codel 0: dev vethNHKWYW root refcnt 2 limit 10240p flows 1024 quantum 1514 target 5.0ms interval 100.0ms ecn
qdisc htb 1: dev ifb0 root refcnt 2 r2q 10 default 10 direct_packets_stat 0 direct_qlen 32
qdisc prio 100: dev ifb0 parent 1:10 bands 3 priomap 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1
qdisc sfq 200: dev ifb0 parent 100:1 limit 127p quantum 1514b depth 127 divisor 1024 perturb 10sec
qdisc sfq 300: dev ifb0 parent 100:2 limit 32p quantum 1514b depth 127 divisor 1024 perturb 10sec
qdisc sfq 400: dev ifb0 parent 100:3 limit 16p quantum 1514b depth 127 divisor 1024 perturb 10sec


Steps to reproduce:

# tc qdisc show
qdisc fq_codel 0: dev eth0 root refcnt 2 limit 10240p flows 1024 quantum 1514 target 5.0ms interval 100.0ms ecn
qdisc hfsc 100: dev br0 root refcnt 2 default 5
*** buffer overflow detected ***: tc terminated
======= Backtrace: =========
/usr/lib/libc.so.6(+0x7198e)[0x7fbe69c4198e]
/usr/lib/libc.so.6(__fortify_fail+0x37)[0x7fbe69cc8937]
/usr/lib/libc.so.6(+0xf6af0)[0x7fbe69cc6af0]
/usr/lib/libc.so.6(+0xf625d)[0x7fbe69cc625d]
/usr/lib/libc.so.6(__snprintf_chk+0x78)[0x7fbe69cc6178]
tc(print_tc_classid+0x17e)[0x40af1e]
tc(print_qdisc+0x247)[0x407a07]
tc(rtnl_dump_filter_l+0x1c5)[0x42e685]
tc(rtnl_dump_filter+0x27)[0x42e8b7]
tc[0x4082e4]
tc(main+0x10f)[0x406bbf]
/usr/lib/libc.so.6(__libc_start_main+0xf0)[0x7fbe69bf0800]
tc(_start+0x29)[0x406e79]
======= Memory map: ========
00400000-00446000 r-xp 00000000 fe:07 158552 /usr/bin/tc
00645000-00647000 r--p 00045000 fe:07 158552 /usr/bin/tc
00647000-0064c000 rw-p 00047000 fe:07 158552 /usr/bin/tc
0064c000-00651000 rw-p 00000000 00:00 0
020cf000-020f0000 rw-p 00000000 00:00 0 [heap]
7fbe699ba000-7fbe699d0000 r-xp 00000000 fe:07 934523 /usr/lib/libgcc_s.so.1
7fbe699d0000-7fbe69bcf000 ---p 00016000 fe:07 934523 /usr/lib/libgcc_s.so.1
7fbe69bcf000-7fbe69bd0000 rw-p 00015000 fe:07 934523 /usr/lib/libgcc_s.so.1
7fbe69bd0000-7fbe69d69000 r-xp 00000000 fe:07 926252 /usr/lib/libc-2.21.so
7fbe69d69000-7fbe69f69000 ---p 00199000 fe:07 926252 /usr/lib/libc-2.21.so
7fbe69f69000-7fbe69f6d000 r--p 00199000 fe:07 926252 /usr/lib/libc-2.21.so
7fbe69f6d000-7fbe69f6f000 rw-p 0019d000 fe:07 926252 /usr/lib/libc-2.21.so
7fbe69f6f000-7fbe69f73000 rw-p 00000000 00:00 0
7fbe69f73000-7fbe69f75000 r-xp 00000000 fe:07 931616 /usr/lib/libdl-2.21.so
7fbe69f75000-7fbe6a175000 ---p 00002000 fe:07 931616 /usr/lib/libdl-2.21.so
7fbe6a175000-7fbe6a176000 r--p 00002000 fe:07 931616 /usr/lib/libdl-2.21.so
7fbe6a176000-7fbe6a177000 rw-p 00003000 fe:07 931616 /usr/lib/libdl-2.21.so
7fbe6a177000-7fbe6a27a000 r-xp 00000000 fe:07 932502 /usr/lib/libm-2.21.so
7fbe6a27a000-7fbe6a47a000 ---p 00103000 fe:07 932502 /usr/lib/libm-2.21.so
7fbe6a47a000-7fbe6a47b000 r--p 00103000 fe:07 932502 /usr/lib/libm-2.21.so
7fbe6a47b000-7fbe6a47c000 rw-p 00104000 fe:07 932502 /usr/lib/libm-2.21.so
7fbe6a47c000-7fbe6a49e000 r-xp 00000000 fe:07 932323 /usr/lib/ld-2.21.so
7fbe6a65a000-7fbe6a65e000 rw-p 00000000 00:00 0
7fbe6a69b000-7fbe6a69d000 rw-p 00000000 00:00 0
7fbe6a69d000-7fbe6a69e000 r--p 00021000 fe:07 932323 /usr/lib/ld-2.21.so
7fbe6a69e000-7fbe6a69f000 rw-p 00022000 fe:07 932323 /usr/lib/ld-2.21.so
7fbe6a69f000-7fbe6a6a0000 rw-p 00000000 00:00 0
7ffde70b4000-7ffde70d5000 rw-p 00000000 00:00 0 [stack]
7ffde7170000-7ffde7172000 r--p 00000000 00:00 0 [vvar]
7ffde7172000-7ffde7174000 r-xp 00000000 00:00 0 [vdso]
ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0 [vsyscall]
qdisc ingress ffff: dev br0 Aborted (core dumped)
This task depends upon

Closed by  Ronald van Haren (pressh)
Thursday, 21 May 2015, 12:14 GMT
Reason for closing:  Fixed
Additional comments about closing:  iproute2 4.0.0-2

Loading...