Bug#501231: samhain: 501231: workaround

Paul Wise Thu, 16 Oct 2008 08:49:33 -0700

On Thu, 2008-10-16 at 23:18 +0800, Paul Wise wrote:

> Rebuilding with debugging symbols and -O2 to see if I can make a patch.


Got a backtrace:

gdb ./samhain
GNU gdb 6.8-debian
Copyright (C) 2008 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "arm-linux-gnueabi"...
(gdb) r
Starting program: /root/samhain-2.2.3/samhain 
[Thread debugging using libthread_db enabled]
[New Thread 0x40020a50 (LWP 11257)]

Program received signal SIGBUS, Bus error.
[Switching to Thread 0x40020a50 (LWP 11257)]
0x0000ee28 in tiger_t (str=0x5d987, length=<value optimized out>, res=0x5d8d4) 
at ./src/sh_tiger1.c:284
284           tiger_compress_macro(str, res);
(gdb) bt full
#0  0x0000ee28 in tiger_t (str=0x5d987, length=<value optimized out>, 
res=0x5d8d4) at ./src/sh_tiger1.c:284
        x21 = <value optimized out>
        x30 = <value optimized out>
        temp1 = <value optimized out>
        a0 = <value optimized out>
        x31 = <value optimized out>
        x40 = <value optimized out>
        temps0 = <value optimized out>
        a1 = <value optimized out>
        b0 = <value optimized out>
        x41 = <value optimized out>
        x50 = <value optimized out>
        tempt0 = <value optimized out>
        b1 = <value optimized out>
        c0 = <value optimized out>
        x00 = <value optimized out>
        x51 = <value optimized out>
        x60 = <value optimized out>
        tempt1 = <value optimized out>
        c1 = 4036404660
        x01 = <value optimized out>
        x10 = <value optimized out>
        x61 = <value optimized out>
        x70 = <value optimized out>
        x11 = <value optimized out>
        x20 = <value optimized out>
        x71 = <value optimized out>
        temp0 = <value optimized out>
        i = 64
#1  0x0001a068 in sh_tiger_hash_val (filename=0xa8069 "/etc/samhain/samhainrc", 
what=TIGER_FD, Length=<value optimized out>, timeout=0) at x_sh_tiger0.c:261
        fd = 305599028
        i = 1
        j = <value optimized out>
        tt = 15424
        count = 15470
        blk = 241
        tmp = <value optimized out>
        bbuf = 
"\000\000\000\000�G�H\000\000\000\000\230\236\006\000\000\000\000\000\002�\000\000\000\000\000\000\000\000\000\000\230\236\006\000�\201\000\000\001",
 '\0' <repeats 11 times>, "�;[EMAIL PROTECTED]@\000\000\000"
        bcount = 0
        pages_read = 0
        euid = <value optimized out>
        ncount = <value optimized out>
        nblocks = 241
---Type <return> to continue, or q <return> to quit---
        msb = <value optimized out>
        lsb = <value optimized out>
        lockflag = 1
        res = {2309737967, 19088743, 1985229328, 4275878552, 3283280263, 
4036404660}
#2  0x0001a7b4 in sh_tiger_hash_internal (filename=0xa8069 
"/etc/samhain/samhainrc", what=TIGER_FD, Length=0, timeout=0) at 
x_sh_tiger0.c:1586
        res = <value optimized out>
        out = '\0' <repeats 48 times>
#3  0x0001a8a8 in sh_tiger_hash (filename=0xf096a5b4 <Address 0xf096a5b4 out of 
bounds>, what=383192, Length=1645831468210396) at x_sh_tiger0.c:1554
No locals.
#4  0x00029d04 in sh_readconf_read () at x_sh_readconf.c:254
        i = <value optimized out>
        fd = 305599028
        tmp = <value optimized out>
        lptr = <value optimized out>
        line_in = "@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL 
PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL 
PROTECTED]@\001\000\000\000L\003\000\000\000 [EMAIL PROTECTED]@[EMAIL 
PROTECTED]", '\0' <repeats 27 times>, 
"L\003\000\000\000\000\000\000\000\020\000\000\000\000\000\000"...
        myident = "\000\001\000\001", '\0' <repeats 91 times>, "[EMAIL 
PROTECTED]@[EMAIL PROTECTED]@\000\000\000\000��,@[EMAIL PROTECTED]@[EMAIL 
PROTECTED]@[EMAIL PROTECTED]@�\t\000"
        some_other_host = {0 <repeats 16 times>}
        some_other_system = {0 <repeats 16 times>}
        seen_host = <value optimized out>
        seen_system = <value optimized out>
        host_int = <value optimized out>
        sys_int = <value optimized out>
        invert = <value optimized out>
        euid = 260800
#5  0x0001c068 in main (argc=1, argv=0xbec6e9a4) at x_samhain.c:1337
        runtim = <value optimized out>
        status = <value optimized out>
        flag_check_1 = <value optimized out>
        flag_check_2 = <value optimized out>
        check_done = <value optimized out>
        told = <value optimized out>
        tcurrent = <value optimized out>
        tzptr = <value optimized out>
        res = <value optimized out>
(gdb) l
279     #ifdef BIG_ENDIAN
280           for(j=0; j<64; j++)
281             temp[j^3] = ((sh_byte*)str)[j];
282           tiger_compress_macro(((sh_word32*)temp), res);
283     #else
284           tiger_compress_macro(str, res);
285     #endif
286           str += 16;
287         }
288     }


-- 
bye,
pabs

http://wiki.debian.org/PaulWise

signature.asc
Description: This is a digitally signed message part

Bug#501231: samhain: 501231: workaround

Reply via email to