NetworkManager

mirror of https://gitlab.freedesktop.org/NetworkManager/NetworkManager.git synced 2025-12-26 15:50:07 +01:00

History

Beniamino Galvani 8123c42e61 cli: fix crash when removing devices When a software device is removed by nmcli in parallel with a disconnection, e.g.: nmcli connection add type team ifname t1 con-name t1 sleep 1 nmcli connection down t1 & nmcli device delete t1 nmcli sometimes crashes in the following way: ... Connection 't1' (e4701688-d1a9-4942-85f0-a2081e120023) successfully added. Connection 't1' successfully deactivated (D-Bus active path: /org/freedesktop/NetworkManager/ActiveConnection/36) Device 't1' successfully removed. AddressSanitizer:DEADLYSIGNAL ================================================================= ==15217==ERROR: AddressSanitizer: SEGV on unknown address 0x00000000000b (pc 0x7fa6d92d1c9d bp 0x0000004ba260 sp 0x7ffffe6a6f40 T0) ==15217==The signal is caused by a READ memory access. ==15217==Hint: address points to the zero page. 0 0x7fa6d92d1c9c in g_string_truncate (/lib64/libglib-2.0.so.0+0x6ec9c) 1 0x7fa6d92d2d7b in g_string_printf (/lib64/libglib-2.0.so.0+0x6fd7b) 2 0x45a6d7 in delete_device_cb clients/cli/devices.c:2465 3 0x7fa6d9849289 in g_simple_async_result_complete /usr/src/debug/glib2-2.56.1-1.fc28.x86_64/gio/gsimpleasyncresult.c:802 4 0x7fa6dbaa9836 in device_delete_cb libnm/nm-device.c:2458 5 0x7fa6d985bcf3 in g_task_return_now /usr/src/debug/glib2-2.56.1-1.fc28.x86_64/gio/gtask.c:1148 6 0x7fa6d985c7a5 in g_task_return /usr/src/debug/glib2-2.56.1-1.fc28.x86_64/gio/gtask.c:1206 7 0x7fa6d989ca6c in reply_cb /usr/src/debug/glib2-2.56.1-1.fc28.x86_64/gio/gdbusproxy.c:2586 8 0x7fa6d985bcf3 in g_task_return_now /usr/src/debug/glib2-2.56.1-1.fc28.x86_64/gio/gtask.c:1148 9 0x7fa6d985c7a5 in g_task_return /usr/src/debug/glib2-2.56.1-1.fc28.x86_64/gio/gtask.c:1206 10 0x7fa6d98913c0 in g_dbus_connection_call_done /usr/src/debug/glib2-2.56.1-1.fc28.x86_64/gio/gdbusconnection.c:5722 11 0x7fa6d985bcf3 in g_task_return_now /usr/src/debug/glib2-2.56.1-1.fc28.x86_64/gio/gtask.c:1148 12 0x7fa6d985bd2c in complete_in_idle_cb /usr/src/debug/glib2-2.56.1-1.fc28.x86_64/gio/gtask.c:1162 13 0x7fa6d92ac0ea in g_idle_dispatch gmain.c:5535 14 0x7fa6d92af7cc in g_main_dispatch gmain.c:3177 15 0x7fa6d92afb97 in g_main_context_iterate gmain.c:3903 16 0x7fa6d92afec1 in g_main_loop_run (/lib64/libglib-2.0.so.0+0x4cec1) 17 0x472892 in main clients/cli/nmcli.c:1067 18 0x7fa6d8cc31ba in __libc_start_main (/lib64/libc.so.6+0x231ba) 19 0x4162b9 in _start (/usr/bin/nmcli+0x4162b9) The reason is that after calling nm_device_delete_async() we also listen for the manager device-removed signal. When the signal is received, device_removed_cb() destroy the @info structure and calls g_main_loop_quit (loop). However, if the delete_device_cb() callback has already been dispatched it is executed anyway and it tries to access a stale @info. It makes little sense to listen for the device-removed signal since the return value of nm_device_delete_async() already tells us whether the device was removed successfully or not. The only advantage would be that when the device goes away for other reasons we can still return success, but that is racy and should not be relied upon. https://bugzilla.redhat.com/show_bug.cgi?id=1639208 (cherry picked from commit `6130a4561e`)		2018-10-22 09:28:37 +02:00
..
cli	cli: fix crash when removing devices	2018-10-22 09:28:37 +02:00
common	cli: minor cleanup of _set_fcn_gobject_enum()	2018-10-17 16:39:16 +02:00
tests	cli/tests: add test for adding and displaying gsm/serial settings	2018-10-17 16:45:03 +02:00
tui	cli: fix reading "vpn.secrets.*" from passwd-file	2018-09-14 15:17:53 +02:00
meson.build	build: create "config-extra.h" header instead of passing directory variables via CFLAGS	2018-07-17 17:46:39 +02:00
nm-online.c	nm-online: print "[started\|start-pending\|failure]" for --wait-for-startup	2018-06-30 10:59:08 +02:00