Bug #1732
Updated by Victor Julien about 8 years ago
<pre> (gdb) print *pkt $1 = 0 '\000' (gdb) $2 = 0 '\000' (gdb) $3 = 0 '\000' (gdb) $4 = 0 '\000' (gdb) bt #0 0x000000000045bddb in DecodeTCPOptions (p=0x7f3da0373af0, pkt=0x7f3da75ff008 "", len=12) at decode-tcp.c:51 #1 0x000000000045c740 in DecodeTCPPacket (tv=0x4579b50, p=0x7f3da0373af0, pkt=0x7f3da75fe6a2 <Address 0x7f3da75fe6a2 out of bounds>, len=1460) at decode-tcp.c:173 #2 0x000000000045c814 in DecodeTCP (tv=0x4579b50, dtv=0x7f3da0385390, p=0x7f3da0373af0, pkt=0x7f3da75fe6a2 <Address 0x7f3da75fe6a2 out of bounds>, len=1460, pq=0x4773ff0) at decode-tcp.c:191 #3 0x0000000000458627 in DecodeIPV4 (tv=0x4579b50, dtv=0x7f3da0385390, p=0x7f3da0373af0, pkt=0x7f3da75fe68e <Address 0x7f3da75fe68e out of bounds>, len=1480, pq=0x4773ff0) at decode-ipv4.c:561 #4 0x00000000004542e7 in DecodeEthernet (tv=0x4579b50, dtv=0x7f3da0385390, p=0x7f3da0373af0, pkt=0x7f3da75fe680 <Address 0x7f3da75fe680 out of bounds>, len=1494, pq=0x4773ff0) at decode-ethernet.c:60 #5 0x0000000000581d48 in DecodePfring (tv=0x4579b50, p=0x7f3da0373af0, data=0x7f3da0385390, pq=0x4773ff0, postpq=0x0) at source-pfring.c:636 #6 0x00000000005a959b in TmThreadsSlotVarRun (tv=0x4579b50, p=0x7f3da0373af0, slot=0x4773fb0) at tm-threads.c:132 #7 0x000000000057f861 in TmThreadsSlotProcessPkt (tv=0x4579b50, s=0x4773fb0, p=0x7f3da0373af0) at tm-threads.h:149 #8 0x000000000058002e in ReceivePfringLoop (tv=0x4579b50, data=0x7f3da03748c0, slot=0x46f2a60) at source-pfring.c:361 #9 0x00000000005a9e11 in TmThreadsSlotPktAcqLoop (td=0x4579b50) at tm-threads.c:336 #10 0x00007f3daf3639d1 in start_thread () from /lib64/libpthread.so.0 #11 0x00007f3dae842b6d in clone () from /lib64/libc.so.6 (gdb) frame 1 #1 0x000000000045c740 in DecodeTCPPacket (tv=0x4579b50, p=0x7f3da0373af0, pkt=0x7f3da75fe6a2 <Address 0x7f3da75fe6a2 out of bounds>, len=1460) at decode-tcp.c:173 173 DecodeTCPOptions(p, pkt + TCP_HEADER_LEN, tcp_opt_len); (gdb) printf *packet Bad format string, missing '"'. (gdb) printf *pkt Bad format string, missing '"'. (gdb) </pre> build Info:: <pre> [root@bjyz01-op-sec226010 bin]# ./suricata --build-info This is Suricata version 3.0 RELEASE Features: PCAP_SET_BUFF LIBPCAP_VERSION_MAJOR=1 PF_RING AF_PACKET HAVE_PACKET_FANOUT LIBCAP_NG LIBNET1.1 HAVE_HTP_URI_NORMALIZE_HOOK PCRE_JIT HAVE_LIBJANSSON TLS SIMD support: SSE_4_2 SSE_4_1 SSE_3 Atomic intrisics: 1 2 4 8 16 byte(s) 64-bits, Little-endian architecture GCC version 4.4.7 20120313 (Red Hat 4.4.7-11), C version 199901 L1 cache line size (CLS)=64 thread local storage method: __thread compiled with LibHTP v0.5.18, linked against LibHTP v0.5.18 Suricata Configuration: AF_PACKET support: yes PF_RING support: yes NFQueue support: no NFLOG support: no IPFW support: no Netmap support: no DAG enabled: no Napatech enabled: no Unix socket enabled: yes Detection enabled: yes libnss support: no libnspr support: no libjansson support: yes hiredis support: no Prelude support: no PCRE jit: yes LUA support: no libluajit: no libgeoip: no Non-bundled htp: no Old barnyard2 support: no CUDA enabled: no Suricatasc install: yes Unit tests enabled: no Debug output enabled: no Debug validation enabled: no Profiling enabled: no Profiling locks enabled: no Coccinelle / spatch: no Generic build parameters: Installation prefix: /data/sec/kids/usr Configuration directory: /data/sec/kids/etc/suricata/ Log directory: /data/sec/kids/var/log/suricata/ --prefix /data/sec/kids/usr --sysconfdir /data/sec/kids/etc --localstatedir /data/sec/kids/var Host: x86_64-unknown-linux-gnu Compiler: gcc (exec name) / gcc (real) GCC Protect enabled: no GCC march native enabled: yes GCC Profile enabled: no Position Independent Executable enabled: no CFLAGS -ggdb -O0 -march=native PCAP_CFLAGS SECCFLAGS </pre>