Bugs item #1066, was opened at 2009-07-21 12:00
Status: Open
Priority: 3
Submitted By: Michael Meyer (mime)
Assigned to: Nobody (None)
Summary: ssh_login_or_reuse_connection() caused different Problems.
Architecture: 32 Bit
Resolution: None
Severity: normal
Version: None
Component: None
Operating System: Linux
Product: OpenVAS
Hardware: PC
URL:
Initial Comment:
Server-Environment 1:
Linux kira 2.6.26-gentoo #1 Sat Jul 19 14:04:50 CEST 2008 i686 AMD Athlon(tm)
XP AuthenticAMD GNU/Linux
Gentoo 32bit
openvas-libraries 2.0.3
openvas-libnasl 2.0.1
openvas-server 2.0.2
openvas-plugins 1.0.7
All from Source.
Server-Environment 2:
Linux cody 2.6.22.19-0.2-default #1 SMP 2008-12-18 10:17:03 +0100 i686 i686
i386 GNU/Linux
openSUSE 10.3 32bit
openvas-libraries 2.0.3
openvas-libnasl 2.0.1
openvas-server 2.0.2
openvas-plugins 1.0.7
All from Source.
Client-Configuration:
checks to perform concurrently = 1
The only activated Plugin is "secpod_apache_apr-utils_detect.nasl".
Dependencies = Enable at runtime
Problem Server-Environment 1:
[Tue Jul 21 13:33:45 2009][27236] user mime : launching http_version.nasl
against 192.168.1.2 [27316]
[Tue Jul 21 13:33:45 2009][27236] http_version.nasl (process 27316) finished
its job in 0.044 seconds
[Tue Jul 21 13:33:45 2009][27236] user mime : launching
secpod_apache_apr-utils_detect.nasl against 192.168.1.2 [27319]
==> /opt/openvas-2.0.2/var/log/openvas/openvasd.dump <==
Could not realloc() a pointer of size 1919116628 !
==> /opt/openvas-2.0.2/var/log/openvas/openvasd.messages <==
[Tue Jul 21 13:35:45 2009][27236] shared_socket: Secret/SSH/socket is unknown
[Tue Jul 21 13:35:45 2009][27236] process_internal_msg for
secpod_apache_apr-utils_detect.nasl returned -1
[Tue Jul 21 13:35:45 2009][25756] user mime : test complete
[Tue Jul 21 13:35:45 2009][25756] Total time to scan all hosts : 145 seconds
[Tue Jul 21 13:35:45 2009][25756] user mime : Kept alive connection
Problem Server-Environment 2:
[Tue Jul 21 09:54:21 2009][5386] shared_socket: Secret/SSH/socket is unknown
[Tue Jul 21 09:54:21 2009][5386] process_internal_msg for
secpod_apache_apr-utils_detect.nasl returned -1
[Tue Jul 21 09:56:21 2009][5386] Process 5445 seems to have died too early
[Tue Jul 21 09:56:21 2009][5386] process_internal_msg for
secpod_apache_apr-utils_detect.nasl returned -1
[Tue Jul 21 09:56:21 2009][5386] Finished testing 192.168.1.2. Time : 256.29
secs
[Tue Jul 21 09:56:21 2009][4968] user mime : test complete
[Tue Jul 21 09:56:21 2009][4968] Total time to scan all hosts : 256 seconds
Process 5445 is secpod_apache_apr-utils_detect.nasl..
This happens when "ssh_login_or_reuse_connection()" is called by
secpod_apache_apr-utils_detect.nasl *and* there is more than one HTTPD listen.
The Scan-Target has an Apache and a Squid/Cups running. If i shut down one of
them, so that only one HTTPD is listen, there is no problem.
Problem seems to be somewhere around "function ssh_reuse_connection()" from
ssh_func.inc.
If i commented out
#soc = shared_socket_acquire("Secret/SSH/socket");
#if ( reuse_connection_init() < 0 )
# {
# _reuse_connection = 0;
# return 0;
# }
problem is gone.
if i only commented out
#soc = shared_socket_acquire("Secret/SSH/socket");
the problem remains.
if i only commented out
#if ( reuse_connection_init() < 0 )
# {
# _reuse_connection = 0;
# return 0;
# }
the problem remains.
----------------------------------------------------------------------
You can respond by visiting:
http://wald.intevation.org/tracker/?func=detail&atid=220&aid=1066&group_id=29
_______________________________________________
Openvas-devel mailing list
Openvas-devel@wald.intevation.org
http://lists.wald.intevation.org/mailman/listinfo/openvas-devel
