wireshark/tshark promiscuous capture on wireless interface locks up machine
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
wireshark (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: wireshark
# lsb_release -rd
Description: Ubuntu 8.04.1
Release: 8.04
# uname -a
Linux greglap 2.6.24-21-generic #1 SMP Mon Aug 25 17:32:09 UTC 2008 i686 GNU/Linux
# apt-cache policy wireshark
wireshark:
Installed: 1.0.2-1~hardy1
Candidate: 1.0.2-1~hardy1
Version table:
*** 1.0.2-1~hardy1 0
500 http://
100 /var/lib/
1.0.0-1 0
500 http://
root@greglap /var/log
# apt-cache policy wireshark-common
wireshark-common:
Installed: 1.0.2-1~hardy1
Candidate: 1.0.2-1~hardy1
Version table:
*** 1.0.2-1~hardy1 0
500 http://
100 /var/lib/
1.0.0-1 0
500 http://
If I use either wireshark as root from menu, or tshark as root user, it seems the first frame captured in promiscuous mode locks up my entire machine. My mouse is frozen, and I cannot kill the X server with the keyboard or switch to another terminal. I'm using a thinkpad R61 with the following internal wireless nic:
# lspci|grep -i wireless
03:00.0 Network controller: Intel Corporation PRO/Wireless 3945ABG Network Connection (rev 02)
I tried the Alt+SysRq+1 followed by Alt+SysRq+t but it generated no output and did not write to /var/log/kern.log
The only entry during the failure of kern.log was the following:
Oct 27 11:19:23 greglap kernel: [ 76.762581] eth1: no IPv6 routers present
here we go
Oct 27 11:54:23 greglap kernel: [ 182.285182] device eth1 entered promiscuous mode
Oct 27 11:54:23 greglap kernel: [ 182.285200] audit(122513006
Oct 27 11:56:28 greglap kernel: Inspecting /boot/System.
The last line is the system booting up after failure and after hard power down.
I've attached a picture of what I see on the console when it locks up.
This happens in wireshark as well as tshark. For testing, to use a text console, I used tshark: us.archive. ubuntu. com hardy-backports /universe Packages dpkg/status us.archive. ubuntu. com hardy/universe Packages
$ apt-cache policy tshark
tshark:
Installed: 1.0.2-1~hardy1
Candidate: 1.0.2-1~hardy1
Version table:
*** 1.0.2-1~hardy1 0
500 http://
100 /var/lib/
1.0.0-1 0
500 http://