On/Dnia Sun, Dec 03, 2000 at 12:36:41AM -0800, Guy Harris wrote/napisał(a)
> On Sat, Dec 02, 2000 at 10:53:05PM +0100, Arkadiusz Miskiewicz wrote:
> > Program received signal SIGSEGV, Segmentation fault.
> > 0x0806e16a in print_attr_string (data=0x8140912 "\005", length=4294967294,
> > attr_code=30)
>
> Here's a patch - can you try it on any of the capture files that had a
> problem?
works (tcpdump doesn't segfaults on radius decoding) but....
Program received signal SIGSEGV, Segmentation fault.
name_interpret (in=0x8142762 <Address 0x8142762 out of bounds>, out=0xbffff604 "")
at ./smbutil.c:122
122 int len = (*in++) / 2;
(gdb) bt
#0 name_interpret (in=0x8142762 <Address 0x8142762 out of bounds>, out=0xbffff604 "")
at ./smbutil.c:122
#1 0x0806bc1c in name_extract (buf=0x8140a12
"\201 Ń\002ÝP$°A\e\235\t§\017ňŁŞSbĘDo8\032Ś{/ŠÂŤ",
ofs=4, name=0xbffff604 "") at ./smbutil.c:167
#2 0x0806c59b in fdata1 (buf=0x8140a16 "ÝP$°A\e\235\t§\017ňŁŞSbĘDo8\032Ś{/ŠÂŤ",
fmt=0xbffff7b4 "n1", maxbuf=0x8140ec2 "") at ./smbutil.c:433
#3 0x0806c897 in fdata (buf=0x8140a12
"\201 Ń\002ÝP$°A\e\235\t§\017ňŁŞSbĘDo8\032Ś{/ŠÂŤ",
fmt=0x80807c0 "NBT Session Request\nFlags=[rW]\nDestination=[n1]\nSource=[n1]\n",
maxbuf=0x8140ec2 "") at ./smbutil.c:531
#4 0x0806b215 in nbt_tcp_print (data=0x8140a12
"\201 Ń\002ÝP$°A\e\235\t§\017ňŁŞSbĘDo8\032Ś{/ŠÂŤ",
length=1200) at ./print-smb.c:765
#5 0x0805d6d5 in tcp_print (bp=0x8140a12
"\201 Ń\002ÝP$°A\e\235\t§\017ňŁŞSbĘDo8\032Ś{/ŠÂŤ",
length=1200, bp2=0x81409de "E", fragmented=0) at ./print-tcp.c:653
#6 0x08051536 in ip_print (bp=0x81409de "E", length=1252) at ./print-ip.c:366
#7 0x0804f1a2 in ether_encap_print (ethertype=2048, p=0x81409de "E", length=1252,
caplen=82)
at ./print-ether.c:161
#8 0x0804efd4 in ether_if_print (user=0x0, h=0xbffffa10, p=0x81409de "E") at
./print-ether.c:128
#9 0x400dcf76 in pcap_read_packet (handle=0x8140848, callback=0x804edd0
<ether_if_print>,
userdata=0x0) at ./pcap-linux.c:401
#10 0x400dcd9a in pcap_read (handle=0x8140848, max_packets=-1,
callback=0x804edd0 <ether_if_print>, user=0x0) at ./pcap-linux.c:254
#11 0x400ddb6f in pcap_loop (p=0x8140848, cnt=-1, callback=0x804edd0 <ether_if_print>,
user=0x0)
at ./pcap.c:79
#12 0x0804a4b3 in main (argc=4, argv=0xbffffcdc) at ./tcpdump.c:417
#13 0x40178f63 in __libc_start_main () from /lib/libc.so.6
(gdb) frame 1
#1 0x0806bc1c in name_extract (buf=0x8140a12
"\201 Ń\002ÝP$°A\e\235\t§\017ňŁŞSbĘDo8\032Ś{/ŠÂŤ",
ofs=4, name=0xbffff604 "") at ./smbutil.c:167
167 return(name_interpret(p,name));
I have quite big SMB traffic here.
--
Arkadiusz Miskiewicz <[EMAIL PROTECTED]>
-
This is the TCPDUMP workers list. It is archived at
http://www.tcpdump.org/lists/workers/index.html
To unsubscribe use mailto:[EMAIL PROTECTED]?body=unsubscribe
