[Xastir] Xastir 1.9.8 CRASHING: ***buffer overflow detected***
Mike L
w2swrster at gmail.com
Tue Feb 9 21:14:20 EST 2010
Crash via GDB (see below), I hope this helps. I will leave the GDB
open in case you need more.
Mike, W2SWR
[New Thread 0xb5eadb70 (LWP 3990)]
[Thread 0xb5eadb70 (LWP 3990) exited]
[New Thread 0xb5eadb70 (LWP 4023)]
[Thread 0xb5eadb70 (LWP 4023) exited]
[New Thread 0xb5eadb70 (LWP 4054)]
[Thread 0xb5eadb70 (LWP 4054) exited]
[New Thread 0xb5eadb70 (LWP 4070)]
[Thread 0xb5eadb70 (LWP 4070) exited]
[New Thread 0xb5eadb70 (LWP 4104)]
[Thread 0xb5eadb70 (LWP 4104) exited]
*** buffer overflow detected ***: /usr/local/bin/xastir terminated
======= Backtrace: =========
/lib/tls/i686/cmov/libc.so.6(__fortify_fail+0x48)[0xeb4ed8]
/lib/tls/i686/cmov/libc.so.6[0xeb3f10]
/lib/tls/i686/cmov/libc.so.6[0xeb3869]
/lib/tls/i686/cmov/libc.so.6(__snprintf_chk+0x34)[0xeb3754]
/usr/local/bin/xastir(storeStationSimplePointToGisDbMysql+0x713)[0x809c6d3]
/usr/local/bin/xastir(data_add+0x17f4)[0x808f5a4]
/usr/local/bin/xastir(decode_info_field+0xfe2)[0x8096692]
/usr/local/bin/xastir(decode_ax25_line+0x200)[0x8097340]
/usr/local/bin/xastir[0x8113d92]
/usr/lib/libXt.so.6[0xaa1107]
/usr/lib/libXt.so.6(XtAppNextEvent+0xad)[0xaa123d]
/usr/lib/libXt.so.6(XtAppMainLoop+0x44)[0xa935d4]
/usr/local/bin/xastir(main+0xefa)[0x812883a]
/lib/tls/i686/cmov/libc.so.6(__libc_start_main+0xe6)[0xdeab56]
/usr/local/bin/xastir[0x806ca81]
======= Memory map: ========
00110000-0023a000 r-xp 00000000 08:01 9986 /usr/lib/libX11.so.6.2.0
0023a000-0023b000 ---p 0012a000 08:01 9986 /usr/lib/libX11.so.6.2.0
0023b000-0023c000 r--p 0012a000 08:01 9986 /usr/lib/libX11.so.6.2.0
0023c000-0023e000 rw-p 0012b000 08:01 9986 /usr/lib/libX11.so.6.2.0
0023e000-0023f000 rw-p 00000000 00:00 0
0023f000-00411000 r-xp 00000000 08:01 9909 /usr/lib/libMagickCore.so.2.0.0
00411000-00416000 r--p 001d1000 08:01 9909 /usr/lib/libMagickCore.so.2.0.0
00416000-0045b000 rw-p 001d6000 08:01 9909 /usr/lib/libMagickCore.so.2.0.0
0045b000-00473000 rw-p 00000000 00:00 0
00473000-004c9000 r-xp 00000000 08:01 11180 /usr/lib/libtiff.so.4.2.1
004c9000-004cb000 r--p 00055000 08:01 11180 /usr/lib/libtiff.so.4.2.1
004cb000-004cc000 rw-p 00057000 08:01 11180 /usr/lib/libtiff.so.4.2.1
004cc000-004e1000 r-xp 00000000 08:01 132459
/lib/tls/i686/cmov/libpthread-2.10.1.so
004e1000-004e2000 r--p 00014000 08:01 132459
/lib/tls/i686/cmov/libpthread-2.10.1.so
004e2000-004e3000 rw-p 00015000 08:01 132459
/lib/tls/i686/cmov/libpthread-2.10.1.so
004e3000-004e5000 rw-p 00000000 00:00 0
004e5000-0064a000 r-xp 00000000 08:01 10209 /usr/lib/libdb-4.7.so
0064a000-0064c000 r--p 00164000 08:01 10209 /usr/lib/libdb-4.7.so
0064c000-0064d000 rw-p 00166000 08:01 10209 /usr/lib/libdb-4.7.so
0064d000-007f8000 r-xp 00000000 08:01 10842
/usr/lib/libmysqlclient.so.16.0.0
007f8000-007fb000 r--p 001aa000 08:01 10842
/usr/lib/libmysqlclient.so.16.0.0
007fb000-00840000 rw-p 001ad000 08:01 10842
/usr/lib/libmysqlclient.so.16.0.0
00840000-00841000 rw-p 00000000 00:00 0
00841000-00851000 r-xp 00000000 08:01 10035
/usr/lib/libXpm.so.4.11.0
00851000-00852000 r--p 0000f000 08:01 10035
/usr/lib/libXpm.so.4.11.0
00852000-00853000 rw-p 00010000 08:01 10035
/usr/lib/libXpm.so.4.11.0
00853000-0085b000 r-xp 00000000 08:01 11073
/usr/lib/libshp.so.1.0.1
0085b000-0085c000 r--p 00007000 08:01 11073
/usr/lib/libshp.so.1.0.1
0085c000-0085d000 rw-p 00008000 08:01 11073
/usr/lib/libshp.so.1.0.1
0085d000-0088c000 r-xp 00000000 08:01 2782
/lib/libpcre.so.3.12.1
0088c000-0088d000 r--p 0002e000 08:01 2782
/lib/libpcre.so.3.12.1
0088d000-0088e000 rw-p 0002f000 08:01 2782
/lib/libpcre.so.3.12.1
0088e000-008ab000 r-xp 00000000 08:01 19753
/usr/local/lib/libgeotiff.so.1.2.3
008ab000-008ac000 r--p 0001c000 08:01 19753
/usr/local/lib/libgeotiff.so.1.2.3
008ac000-008b1000 rw-p 0001d000 08:01 19753
/usr/local/lib/libgeotiff.so.1.2.3
008b1000-008b8000 r-xp 00000000 08:01 10135
/usr/lib/libax25.so.0.0.0
008b8000-008b9000 rw-p 00007000 08:01 10135
/usr/lib/libax25.so.0.0.0
008b9000-008c0000 r-xp 00000000 08:01 9978
/usr/lib/libSM.so.6.0.0
008c0000-008c1000 r--p 00006000 08:01 9978
/usr/lib/libSM.so.6.0.0
008c1000-008c2000 rw-p 00007000 08:01 9978
/usr/lib/libSM.so.6.0.0
008c2000-008d9000 r-xp 00000000 08:01 9884
/usr/lib/libICE.so.6.3.0
008d9000-008da000 r--p 00016000 08:01 9884
/usr/lib/libICE.so.6.3.0
008da000-008db000 rw-p 00017000 08:01 9884
/usr/lib/libICE.so.6.3.0
008db000-008dd000 rw-p 00000000 00:00 0
008dd000-008eb000 r-xp 00000000 08:01 10011
/usr/lib/libXext.so.6.4.0
008eb000-008ec000 r--p 0000d000 08:01 10011
/usr/lib/libXext.so.6.4.0
008ec000-008ed000 rw-p 0000e000 08:01 10011
/usr/lib/libXext.so.6.4.0
008ed000-008f4000 r-xp 00000000 08:01 10033
/usr/lib/libXp.so.6.2.0
008f4000-008f5000 r--p 00006000 08:01 10033
/usr/lib/libXp.so.6.2.0
008f5000-008f6000 rw-p 00007000 08:01 10033
/usr/lib/libXp.so.6.2.0
008f6000-00912000 r-xp 00000000 08:01 11257
/usr/lib/libxcb.so.1.1.0
00912000-00913000 r--p 0001c000 08:01 11257
/usr/lib/libxcb.so.1.1.0
00913000-00914000 rw-p 0001d000 08:01 11257
/usr/lib/libxcb.so.1.1.0
00914000-00916000 r-xp 00000000 08:01 132448
/lib/tls/i686/cmov/libdl-2.10.1.so
00916000-00917000 r--p 00001000 08:01 132448
/lib/tls/i686/cmov/libdl-2.10.1.so
00917000-00918000 rw-p 00002000 08:01 132448
/lib/tls/i686/cmov/libdl-2.10.1.so
00918000-0093a000 r-xp 00000000 08:01 10482
/usr/lib/libjpeg.so.62.0.0
0093a000-0093b000 r--p 00021000 08:01 10482
/usr/lib/libjpeg.so.62.0.0
0093b000-0093c000 rw-p 00022000 08:01 10482
/usr/lib/libjpeg.so.62.0.0
0093c000-00944000 r-xp 00000000 08:01 10797
/usr/lib/libltdl.so.7.2.0
00944000-00945000 r--p 00007000 08:01 10797
/usr/lib/libltdl.so.7.2.0
00945000-00946000 rw-p 00008000 08:01 10797
/usr/lib/libltdl.so.7.2.0
00946000-0096a000 r-xp 00000000 08:01 132449
/lib/tls/i686/cmov/libm-2.10.1.so
0096a000-0096b000 r--p 00023000 08:01 132449
/lib/tls/i686/cmov/libm-2.10.1.so
0096b000-0096c000 rw-p 00024000 08:01 132449
/lib/tls/i686/cmov/libm-2.10.1.so
0096c000-009e6000 r-xp 00000000 08:01 10296
/usr/lib/libfreetype.so.6.3.20
009e6000-009ea000 r--p 00079000 08:01 10296
/usr/lib/libfreetype.so.6.3.20
009ea000-009eb000 rw-p 0007d000 08:01 10296
/usr/lib/libfreetype.so.6.3.20
009eb000-009fb000 r-xp 00000000 08:01 2697 /lib/libbz2.so.1.0.4
009fb000-009fc000 r--p 0000f000 08:01 2697 /lib/libbz2.so.1.0.4
009fc000-009fd000 rw-p 00010000 08:01 2697 /lib/libbz2.so.1.0.4
009fd000-00a11000 r-xp 00000000 08:01 2830 /lib/libz.so.1.2.3.3
00a11000-00a12000 r--p 00013000 08:01 2830 /lib/libz.so.1.2.3.3
00a12000-00a13000 rw-p 00014000 08:01 2830 /lib/libz.so.1.2.3.3
00a13000-00a15000 r-xp 00000000 08:01 2705
/lib/libcom_err.so.2.1
00a15000-00a16000 r--p 00001000 08:01 2705
/lib/libcom_err.so.2.1
00a16000-00a17000 rw-p 00002000 08:01 2705
/lib/libcom_err.so.2.1
00a17000-00a1a000 r-xp 00000000 08:01 2823 /lib/libuuid.so.1.3.0
00a1a000-00a1b000 r--p 00002000 08:01 2823 /lib/libuuid.so.1.3.0
00a1b000-00a1c000 rw-p 00003000 08:01 2823 /lib/libuuid.so.1.3.0
00a1e000-00a35000 r-xp 00000000 08:01 10027
/usr/lib/libXmu.so.6.2.0
00a35000-00a36000 r--p 00016000 08:01 10027
/usr/lib/libXmu.so.6.2.0
00a36000-00a37000 rw-p 00017000 08:01 10027
/usr/lib/libXmu.so.6.2.0
Program received signal SIGABRT, Aborted.
0x00fde422 in __kernel_vsyscall ()
(gdb) info threads
6 Thread 0xb66aeb70 (LWP 2200) 0x00fde422 in __kernel_vsyscall ()
5 Thread 0xb6eafb70 (LWP 2199) 0x00fde422 in __kernel_vsyscall ()
3 Thread 0xb76b0b70 (LWP 2195) 0x00fde422 in __kernel_vsyscall ()
2 Thread 0xb7eb1b70 (LWP 2194) 0x00fde422 in __kernel_vsyscall ()
* 1 Thread 0xb7fdea30 (LWP 2189) 0x00fde422 in __kernel_vsyscall ()
(gdb) where
#0 0x00fde422 in __kernel_vsyscall ()
#1 0x00dfe4d1 in raise () from /lib/tls/i686/cmov/libc.so.6
#2 0x00e01932 in abort () from /lib/tls/i686/cmov/libc.so.6
#3 0x00e34ee5 in ?? () from /lib/tls/i686/cmov/libc.so.6
#4 0x00eb4ed8 in __fortify_fail () from /lib/tls/i686/cmov/libc.so.6
#5 0x00eb3f10 in __chk_fail () from /lib/tls/i686/cmov/libc.so.6
#6 0x00eb3869 in __vsnprintf_chk () from /lib/tls/i686/cmov/libc.so.6
#7 0x00eb3754 in __snprintf_chk () from /lib/tls/i686/cmov/libc.so.6
#8 0x0809c6d3 in snprintf (aDbConnection=0x842a3d8,
aStation=0x8438c38) at /usr/include/bits/stdio2.h:65
#9 storeStationSimplePointToGisDbMysql (aDbConnection=0x842a3d8,
aStation=0x8438c38) at db_gis.c:1862
#10 0x0808f5a4 in data_add (type=1, call_sign=0xbfffea42 "WA4BVW",
path=0xbfffe9a1 "APW250,N4VDE-3,KI4WXS-5,KI4WXS-10,K4CCC-10,N4JTH-5,WIDE3*",
data=0xbfffef33 "WinAPRS 2.5.0 -SCGVLLANDRUM -250-<530>", from=84
'T', port=0, origin=0xbfffea38 "",
third_party=0, station_is_mine=0, object_is_mine=0) at db.c:13822
#11 0x08096692 in decode_info_field (call=0xbfffea42 "WA4BVW",
path=0xbfffe9a1 "APW250,N4VDE-3,KI4WXS-5,KI4WXS-10,K4CCC-10,N4JTH-5,WIDE3*",
message=0xbfffef1f "=3505.70N/08217.00W-WinAPRS 2.5.0
-SCGVLLANDRUM -250-<530>", origin=0xbfffea38 "",
from=<value optimized out>, port=0, third_party=0,
orig_message=0xbfffe640 "=3505.70N/08217.00W-PHG3160/WinAPRS 2.5.0
-SCGVLLANDRUM -250-<530>") at db.c:17123
#12 0x08097340 in decode_ax25_line (line=0xbfffeede "WA4BVW", from=84
'T', port=0, dbadd=1) at db.c:18722
#13 0x08113d92 in UpdateTime (clientData=0x83b56b0, id=3221221736) at
main.c:12401
#14 0x00aa1107 in ?? () from /usr/lib/libXt.so.6
#15 0x00aa123d in XtAppNextEvent () from /usr/lib/libXt.so.6
#16 0x00a935d4 in XtAppMainLoop () from /usr/lib/libXt.so.6
#17 0x0812883a in main (argc=2, argv=0xbffff424, envp=0xbffff430) at
main.c:27905
(gdb) list
27176 <Key>c: Quit()\n\
27177 Ctrl <Key>n: Next()\n\
27178 Ctrl <Key>p: Prev()\n",
27179
27180 "*minWidth: 200\n",
27181
27182 "*minHeight: 100\n",
27183
27184 NULL
27185 };
(gdb)
----
On Tue, Feb 9, 2010 at 11:20 AM, Jeremy McDermond
<mcdermj at xenotropic.com> wrote:
> On Feb 9, 2010, at 11:14 AM, Curt, WE7U wrote:
>
>> On Tue, 9 Feb 2010, Mike L wrote:
>>
>>>> From original subject: Re:[Xastir] So I built current
>>>
>>> I figured I might repost the crash with a subject line that may get
>>> more attention
>>>
>>> --
>>>
>>> Here is my crash. It happened sometime over night, no one at the
>>> computer. My PC is a Pentium 4, 2.3GHz with 512 gb ram running
>>> Kubuntu 9.10 and xastir 1.9.8 --with-postgres --with-mysql with
>>> connections to APRS t2 and MySQL running.
>>
>> If it happened on my box I could force a crash dump, then look at it
>> with GDB to figure out where the buffer overflow occured.
>
> It looks like it's around line 1817 of db_gis.c that it's crashing out on. There are a whole bunch of snprintfs that construct the aprs symbol, overlays and such. Mike might want to throw some debugging in that area to see which of the snprintfs are causing the issue.
>
>> --
>> Curt, WE7U.
>
> --
> Jeremy McDermond (NH6Z)
> Xenotropic Systems
> mcdermj at xenotropic.com
>
>
>
> _______________________________________________
> Xastir mailing list
> Xastir at lists.xastir.org
> http://lists.xastir.org/cgi-bin/mailman/listinfo/xastir
>
More information about the Xastir
mailing list