[Snort-devel] 1.7 coredump in spp_defrag.c

Martin Roesch roesch at ...48...
Sat Jan 13 02:38:04 EST 2001


Hmm, looks like a memory alignment problem.  I thought we fixed
these.... :(

I'll look into it.

    -Marty

Erich Meier wrote:
> 
> Hi!
> 
> Another release - another crash... :-(
> 
> snort 1.7 spp_defrag.c crashes on SPARC Solaris with the following stacktrace:
> 
> # gdb /local/snort/bin/snort ./core
> Program terminated with signal 10, Bus error.
> #0  0x2cf54 in fragsplay (i=0xf08a48, t=0x1b314b8) at spp_defrag.c:253
> 253                     t->size = node_size(t->left) + node_size(t->right) + 1;
> (gdb) bt
> #0  0x2cf54 in fragsplay (i=0xf08a48, t=0x1b314b8) at spp_defrag.c:253
> #1  0x2d15c in fraginsert (i=0xf08a48, t=0x1892d30) at spp_defrag.c:321
> #2  0x2da2c in PreprocDefrag (p=0xeffff260) at spp_defrag.c:905
> #3  0x240f8 in Preprocess (p=0xeffff260) at rules.c:3016
> #4  0x19f24 in ProcessPacket (user=0x0, pkthdr=0xeffff710, pkt=0x75e02 "\b")
>     at snort.c:463
> #5  0x3d6b0 in pcap_read ()
> #6  0x3e3c4 in pcap_loop ()
> #7  0x1af08 in InterfaceThread (arg=0x6ff54) at snort.c:1278
> #8  0x19dd8 in main (argc=0, argv=0xeffff8fc) at snort.c:397
> 
> (gdb) print t
> $1 = (Tree *) 0x1b314b8
> 
> Am I the only one?
> 
> Erich
> 
> _______________________________________________
> Snort-devel mailing list
> Snort-devel at lists.sourceforge.net
> http://lists.sourceforge.net/mailman/listinfo/snort-devel

--
Martin Roesch
roesch at ...48...
http://www.snort.org




More information about the Snort-devel mailing list