It turns out I can only duplicate the buffer overflow using the RPMForge (Dag) packages. When building from source, or rebuilding from SRPM, I don't get the buffer overflow.
PACKAGE: # rpm -qf /usr/sbin/cfagent cfengine-2.2.1-1.el5.rf # /usr/sbin/cfagent -qvIK CheckFriendConnections(0) *** buffer overflow detected ***: /usr/sbin/cfagent terminated ======= Backtrace: ========= ... SOURCE: # rpm -qf /usr/local/sbin/cfagent file /usr/local/sbin/cfagent is not owned by any package # /usr/sbin/cfagent -qvIK CheckFriendConnections(0) cfengine:nvpcmsa001: Host nvpmmsa001.navitaire.com i.e. 192.168.128.30 last responded to hails @ [Mon Jun 18 15:57] (overdue by 0 mins) cfengine:nvpcmsa001: i.e. (0.00) hrs ago, Av 0.01 +/- 0.03 hrs SRPM: # rpm -qf /usr/sbin/cfagent cfengine-2.2.1-1.rf # /usr/sbin/cfagent -qvIK CheckFriendConnections(0) cfengine:nvpcmsa001: Host nvpmmsa001.navitaire.com i.e. 192.168.128.30 last responded to hails @ [Mon Jun 18 16:01] (overdue by 0 mins) cfengine:nvpcmsa001: i.e. (0.00) hrs ago, Av 0.00 +/- 0.01 hrs Are there any other steps you'd like me to perform? Or is there little else I can do with only a binary RPM with problems? Thanks! Brandon On Mon, 2007-06-18 at 09:30 -0700, Eric Sorenson wrote: > On Mon, 18 Jun 2007, Brandon Hutchinson wrote: > > > Mark, > > > > I attached the gdb backtrace. Let me know if you need anything else. > > > > Thanks! > > Brandon- your cfagent doesnt have debugging symbols enabled -- if you > built from SRPM , did you install the cfengine-debug package? If it > was a standalone source build can you make sure CFLAGS has '-g' and > its not getting stripped before installation? > > CheckFriendConnections(0) > *** buffer overflow detected ***: /usr/sbin/cfagent terminated > (no debugging symbols found) > > > _______________________________________________ Bug-cfengine mailing list [email protected] https://cfengine.org/mailman/listinfo/bug-cfengine
