FS#48527 - [dhclient] 4.3.3.p1-1 repeatedly dumps core

Attached to Project: Arch Linux
Opened by Martin Honermeyer (mazzolino) - Thursday, 10 March 2016, 10:08 GMT
Last edited by Eli Schwartz (eschwartz) - Tuesday, 14 November 2017, 22:32 GMT
Task Type Bug Report
Category Upstream Bugs
Status Closed
Assigned To Felix Yan (felixonmars)
Architecture x86_64
Severity High
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 3
Private No

Details

Description:

After startup on my machine, dhclient (invoked through NetworkManager on Gnome) crashes the first few times when trying to get a network address. After a few tries (turning network off and on again) it succeeds.

This happens for wired as well as wireless networks on two of my machines in different networks. It began a few weeks ago, but I can't exactly tell the date.

When manually invoking dhclient, I get this:

$ sudo dhclient enp0s25
*** buffer overflow detected ***: dhclient terminated
======= Backtrace: =========
/usr/lib/libc.so.6(+0x6f364)[0x7f414dc26364]
/usr/lib/libc.so.6(__fortify_fail+0x37)[0x7f414dcaf017]
/usr/lib/libc.so.6(+0xf61d0)[0x7f414dcad1d0]
/usr/lib/libc.so.6(+0xf5522)[0x7f414dcac522]
dhclient[0x423187]
dhclient[0x407a5a]
/usr/lib/libc.so.6(__libc_start_main+0xf0)[0x7f414dbd7710]
dhclient[0x408769]
======= Memory map: ========
00400000-005b6000 r-xp 00000000 08:01 8921359 /usr/bin/dhclient
007b5000-007b6000 r--p 001b5000 08:01 8921359 /usr/bin/dhclient
007b6000-007bc000 rw-p 001b6000 08:01 8921359 /usr/bin/dhclient
007bc000-007c8000 rw-p 00000000 00:00 0
00846000-0092c000 rw-p 00000000 00:00 0 [heap]
7f414d36e000-7f414d384000 r-xp 00000000 08:01 10640564 /usr/lib/libgcc_s.so.1
7f414d384000-7f414d583000 ---p 00016000 08:01 10640564 /usr/lib/libgcc_s.so.1
7f414d583000-7f414d584000 rw-p 00015000 08:01 10640564 /usr/lib/libgcc_s.so.1
7f414d584000-7f414d58f000 r-xp 00000000 08:01 10670528 /usr/lib/libnss_files-2.23.so
7f414d58f000-7f414d78e000 ---p 0000b000 08:01 10670528 /usr/lib/libnss_files-2.23.so
7f414d78e000-7f414d78f000 r--p 0000a000 08:01 10670528 /usr/lib/libnss_files-2.23.so
7f414d78f000-7f414d790000 rw-p 0000b000 08:01 10670528 /usr/lib/libnss_files-2.23.so
7f414d790000-7f414d796000 rw-p 00000000 00:00 0
7f414d7d6000-7f414dbb7000 rw-p 00000000 00:00 0
7f414dbb7000-7f414dd4f000 r-xp 00000000 08:01 10641196 /usr/lib/libc-2.23.so
7f414dd4f000-7f414df4e000 ---p 00198000 08:01 10641196 /usr/lib/libc-2.23.so
7f414df4e000-7f414df52000 r--p 00197000 08:01 10641196 /usr/lib/libc-2.23.so
7f414df52000-7f414df54000 rw-p 0019b000 08:01 10641196 /usr/lib/libc-2.23.so
7f414df54000-7f414df58000 rw-p 00000000 00:00 0
7f414df58000-7f414df7b000 r-xp 00000000 08:01 10641195 /usr/lib/ld-2.23.so
7f414df91000-7f414e13b000 rw-p 00000000 00:00 0
7f414e149000-7f414e17b000 rw-p 00000000 00:00 0
7f414e17b000-7f414e17c000 r--p 00023000 08:01 10641195 /usr/lib/ld-2.23.so
7f414e17c000-7f414e17d000 rw-p 00024000 08:01 10641195 /usr/lib/ld-2.23.so
7f414e17d000-7f414e17e000 rw-p 00000000 00:00 0
7ffc376d7000-7ffc376f8000 rw-p 00000000 00:00 0 [stack]
7ffc377d1000-7ffc377d3000 r--p 00000000 00:00 0 [vvar]
7ffc377d3000-7ffc377d5000 r-xp 00000000 00:00 0 [vdso]
ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0 [vsyscall]
[1] 4261 abort sudo dhclient enp0s25



GDB backtrace:

Starting program: /usr/bin/dhclient enp0s25

Program received signal SIGABRT, Aborted.
0x00007ffff7a6b2a8 in raise () from /usr/lib/libc.so.6

Thread 1 (process 6552):
#0 0x00007ffff7a6b2a8 in raise () from /usr/lib/libc.so.6
No symbol table info available.
#1 0x00007ffff7a6c72a in abort () from /usr/lib/libc.so.6
No symbol table info available.
#2 0x00007ffff7aa7369 in __libc_message () from /usr/lib/libc.so.6
No symbol table info available.
#3 0x00007ffff7b30017 in __fortify_fail () from /usr/lib/libc.so.6
No symbol table info available.
#4 0x00007ffff7b2e1d0 in __chk_fail () from /usr/lib/libc.so.6
No symbol table info available.
#5 0x00007ffff7b2d522 in __strcpy_chk () from /usr/lib/libc.so.6
No symbol table info available.
#6 0x0000000000423187 in ?? ()
No symbol table info available.
#7 0x0000000000407a5a in ?? ()
No symbol table info available.
#8 0x00007ffff7a58710 in __libc_start_main () from /usr/lib/libc.so.6
No symbol table info available.
#9 0x0000000000408769 in ?? ()
No symbol table info available.


Additional info:

$ pacman -Q dhclient
dhclient 4.3.3.p1-1
$ uname -s -r -v -m -p -i -o
Linux 4.4.3-1-ARCH #1 SMP PREEMPT Fri Feb 26 15:09:29 CET 2016 x86_64 unknown unknown GNU/Linux

Steps to reproduce:

$ sudo dhclient enp0s25
This task depends upon

Closed by  Eli Schwartz (eschwartz)
Tuesday, 14 November 2017, 22:32 GMT
Reason for closing:  Fixed
Additional comments about closing:  dhcp 4.3.5-1
Comment by Matthieu (CircleCode) - Saturday, 12 March 2016, 06:21 GMT
I had the same problem and found that it occurs as soon as I do some `docker network create foo`. Once I `docker network rm foo`, dhcp works again.
Comment by Martin Honermeyer (mazzolino) - Saturday, 12 March 2016, 09:21 GMT
@CircleCode Thanks for the hint! Had a custom Docker network created. After removing it, dhclient was immediately able to connect.

We'll see if this fully fixes the problem. Would be nice to know why this happens at all.
Comment by pedrum (pd5rm) - Monday, 25 July 2016, 23:06 GMT
FWIW, I hit this in 4.3.4 as well and reported upstream. They have a fix targeted for 4.3.5 release.

I'm not sure if I'm allowed to post the bug contents (they have a closed tracker), but the reference is: ISC-Bugs #42897.
Comment by Johannes Zellner (nebulon) - Tuesday, 09 August 2016, 11:08 GMT Comment by Marco Neumann (crepererum) - Friday, 19 August 2016, 18:10 GMT
I've extracted another stacktrace which includes debug information. It turns out that the interface names that docker creates are too long for the current implementation (docker is NOT violating any rules / API guidelines here). The contact person of the upstream bug tracker confirmed that:
- it's a known problem
- the have a patch for that problem
- patched version will be 4.3.5 beta / 4.1-ESV-R14 beta
- expected release (of the BETA) is early September
Comment by Kristof Jozsa (kjozsa) - Monday, 12 September 2016, 06:49 GMT
Could you please link the upstream bug? Thanks.
Comment by Marco Neumann (crepererum) - Monday, 12 September 2016, 07:39 GMT
No, I cannot since their shiny bugtracker is basically closed and you have to fill out a form to submit a bug. The communication about state changes is done via email. So not even the submitter gets a link.
Comment by Kristof Jozsa (kjozsa) - Monday, 12 September 2016, 07:52 GMT
way cool.. never mind then :)
Comment by Alexandru Zbârcea (alexz) - Tuesday, 13 September 2016, 02:04 GMT
I have the same issue.

It happens when I boot, or when I wake the system. To overcome the issue, I run:

<pre>
sudo dhclient -4 wlan0
</pre>

I "Abort"s few times but after running the command repeatedly it starts to work.

I relate it also the Comcast (xFinity) and their router that doesn't give me IPv4 address, but only IPV6 at first. It may be related to docker as well, but I couldn't find the relation. journalctl was of no help in this regard.

I include my stack trace as well:

<pre>
$ sudo dhclient -4 wlan0
*** buffer overflow detected ***: dhclient terminated
======= Backtrace: =========
/usr/lib/libc.so.6(+0x70c4b)[0x7f995f6e9c4b]
/usr/lib/libc.so.6(__fortify_fail+0x37)[0x7f995f771f17]
/usr/lib/libc.so.6(+0xf7050)[0x7f995f770050]
/usr/lib/libc.so.6(+0xf63b2)[0x7f995f76f3b2]
dhclient[0x42418a]
dhclient[0x40793f]
/usr/lib/libc.so.6(__libc_start_main+0xf1)[0x7f995f699291]
dhclient[0x408819]
======= Memory map: ========
00400000-005b9000 r-xp 00000000 08:03 3982705 /usr/bin/dhclient
007b8000-007b9000 r--p 001b8000 08:03 3982705 /usr/bin/dhclient
007b9000-007c0000 rw-p 001b9000 08:03 3982705 /usr/bin/dhclient
007c0000-007cb000 rw-p 00000000 00:00 0
00c2c000-00d12000 rw-p 00000000 00:00 0 [heap]
7f995ee33000-7f995ee49000 r-xp 00000000 08:03 3935721 /usr/lib/libgcc_s.so.1
7f995ee49000-7f995f048000 ---p 00016000 08:03 3935721 /usr/lib/libgcc_s.so.1
7f995f048000-7f995f049000 r--p 00015000 08:03 3935721 /usr/lib/libgcc_s.so.1
7f995f049000-7f995f04a000 rw-p 00016000 08:03 3935721 /usr/lib/libgcc_s.so.1
7f995f04a000-7f995f054000 r-xp 00000000 08:03 3935567 /usr/lib/libnss_files-2.24.so
7f995f054000-7f995f254000 ---p 0000a000 08:03 3935567 /usr/lib/libnss_files-2.24.so
7f995f254000-7f995f255000 r--p 0000a000 08:03 3935567 /usr/lib/libnss_files-2.24.so
7f995f255000-7f995f256000 rw-p 0000b000 08:03 3935567 /usr/lib/libnss_files-2.24.so
7f995f256000-7f995f25c000 rw-p 00000000 00:00 0
7f995f298000-7f995f679000 rw-p 00000000 00:00 0
7f995f679000-7f995f80e000 r-xp 00000000 08:03 3935449 /usr/lib/libc-2.24.so
7f995f80e000-7f995fa0d000 ---p 00195000 08:03 3935449 /usr/lib/libc-2.24.so
7f995fa0d000-7f995fa11000 r--p 00194000 08:03 3935449 /usr/lib/libc-2.24.so
7f995fa11000-7f995fa13000 rw-p 00198000 08:03 3935449 /usr/lib/libc-2.24.so
7f995fa13000-7f995fa17000 rw-p 00000000 00:00 0
7f995fa17000-7f995fa3a000 r-xp 00000000 08:03 3935447 /usr/lib/ld-2.24.so
7f995fa54000-7f995fbfd000 rw-p 00000000 00:00 0
7f995fc07000-7f995fc39000 rw-p 00000000 00:00 0
7f995fc39000-7f995fc3a000 r--p 00022000 08:03 3935447 /usr/lib/ld-2.24.so
7f995fc3a000-7f995fc3b000 rw-p 00023000 08:03 3935447 /usr/lib/ld-2.24.so
7f995fc3b000-7f995fc3c000 rw-p 00000000 00:00 0
7fff74385000-7fff743a6000 rw-p 00000000 00:00 0 [stack]
7fff743de000-7fff743e0000 r--p 00000000 00:00 0 [vvar]
7fff743e0000-7fff743e2000 r-xp 00000000 00:00 0 [vdso]
ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0 [vsyscall]
Aborted
</pre>
Comment by Pierre Dumuid (pmdumuid) - Thursday, 22 September 2016, 13:58 GMT

Loading...