[Oisf-devel] Suricata 1.2.1 + OpenBSD 5.1 = segmentation fault
Anoop Saldanha
anoopsaldanha at gmail.com
Tue May 8 08:50:12 UTC 2012
Can you extract the flow causing the issue? If it is easily
reproducible you can run the engine, start tcpdump at the same time.
On Tue, May 8, 2012 at 1:45 PM, Henri Wahl <h.wahl at ifw-dresden.de> wrote:
> Hi,
> never mind, some minutes after the last post it crashed again :-(
>
> Program received signal SIGSEGV, Segmentation fault.
> [Switching to process 4480, thread 0x8463cc00]
> 0x0bd50dfd in match () from /usr/local/lib/libpcre.so.2.5
>
> (gdb) bt full
> No symbol table info available.
> #10 0x0bd58e6b in match () from /usr/local/lib/libpcre.so.2.5
> No symbol table info available.
> #11 0x0bd513b4 in match () from /usr/local/lib/libpcre.so.2.5
> ....
> #271 0x1c0a2a7b in DetectPcrePayloadMatch (det_ctx=0x8b92f000,
> s=0x8bf5c000,
> sm=0x84fb6330, p=0x7ee803e0, f=0x7efedd00,
> payload=0x7ee80a52 "handleRemove();return
> false;\">Remove</a></li>';if(e!=\"undefined\"&&e!=\"\"&&e!=null){j+='<li><a
> href=\"#\"
> onclick=\"shindig.container.getGadget('+this.id+').moveDOWN();return
> false;\">Move DOWN</a></li>'}el"..., payload_len=1424)
> at detect-pcre.c:482
> _sc_enter_msg = '\0' <repeats 112 times>,
> "��t�\200\213}~\031\215G\215\031\215G\215\004\033x\204�\203\033\034\031\215G\215\000\000\000\000�\a",
> '\0' <repeats 38 times
>
> Regards
>
>
>
> Am 08.05.2012 09:28, schrieb Henri Wahl:
>> Hi,
>> regarding the seemingly PCRE JIT related crashs I recompiled yesterdays
>> git master with ./configure option --disable-pcre-jit and now it runs
>> longer than ever before without crashing. Does this help anything?
>> Regards
>>
>>
>>
>> _______________________________________________
>> Oisf-devel mailing list
>> Oisf-devel at openinfosecfoundation.org
>> http://lists.openinfosecfoundation.org/mailman/listinfo/oisf-devel
>
>
> --
> Henri Wahl
>
> IT Department
> Leibniz-Institut für Festkörper- u.
> Werkstoffforschung Dresden
>
> tel. (03 51) 46 59 - 797
> email: h.wahl at ifw-dresden.de
> http://www.ifw-dresden.de
>
> Nagios status monitor for your desktop:
> http://nagstamon.ifw-dresden.de
>
> IFW Dresden e.V., Helmholtzstraße 20, D-01069 Dresden
> VR Dresden Nr. 1369
> Vorstand: Prof. Dr. Ludwig Schultz, Dr. h.c. Dipl.-Finw. Rolf Pfrengle
>
>
> _______________________________________________
> Oisf-devel mailing list
> Oisf-devel at openinfosecfoundation.org
> http://lists.openinfosecfoundation.org/mailman/listinfo/oisf-devel
--
Anoop Saldanha
More information about the Oisf-devel
mailing list