Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-hardened

From: Alex Efros <powerman@××××××××.name>
To: gentoo-hardened@l.g.o
Subject: Re: [gentoo-hardened] Security Level: high/server/workstation/virtualization
Date: Fri, 27 Jan 2012 23:16:00
Message-Id: 20120127231507.GF5600@home.power
In Reply to: Re: [gentoo-hardened] Security Level: high/server/workstation/virtualization by Alex Efros
1 Hi!
2
3 I've re-emerged libpcap and run this:
4
5 $ gdb dumpcap --batch --quiet -ex 'run' -ex 'thread apply all bt full' -ex quit
6
7 What's next? Recompile glibc with same CFLAGS/FEATURES and try again?
8
9
10 [Thread debugging using libthread_db enabled]
11
12 Program received signal SIGSEGV, Segmentation fault.
13 0xb75fd152 in readdir64 () from /lib/libc.so.6
14
15 Thread 1 (Thread 0xb754f6c0 (LWP 829)):
16 #0 0xb75fd152 in readdir64 () from /lib/libc.so.6
17 No symbol table info available.
18 #1 0xb76fb7ea in scan_sys_class_net (devlistp=0xbfffe758, errbuf=0xbfffe7ac "tun0: You don't have permission to capture on that device (socket: Operation not permitted)") at ./pcap-linux.c:1832
19 sys_class_net_d = 0x0
20 fd = 9
21 ent = <optimized out>
22 p = <optimized out>
23 name = "\261~d\267\234\344\377\277.\204q\267\304\345\377\277\254\347\377\277\000\000\000\000\234\344\377\277\377\000\000\000\001\200\255\373\254\347\377\277\254\347\377\277\254\347\377\277\254\347\377\277\a\350\377\277\253\350\377\277\254\347\377\277\253\350\377\277", '\000' <repeats 20 times>, "\030\023\000\000\004\000\000\000T\256k\267\000\000\000\000\000\000\000\000ٜ\211\267\335\022\253U\230b\211\267Ԝ\211\267\000\000\000\000`\234r\267\020\200\211\267\220h]\267h\345\377\277\211%p\267\020\200\211\267\377\377\000\000\325<^\267(Pp\267v\000\000\000\271~i\267āi\267\270\303k\267\000\251k\267\000\000\000\000Ԝ\211\267\335\022\253U`\234r\267\020\200\211\267\300\306k\267\320\020\000\000\200\303k\267T\256k\267\200\303k\267Ԝ\211\267x\345\377\277\243\235]\267\250\345\377\277\335\022\253U`\234r\267\020\200\211\267\250\345\377\277Z)p\267\020\200\211\267Ԝ\211\267\250\345\377\277\330}d\267\254\347\377\277\000\001\000\000\001\000\000\000\335\022\253U`\234r\267\020\200\211\267\b\346\377\277A+p\267\020\200\211\267\000\001\000\000\001\000\000\000\377\377\377\377.\204q\267Ԝ\211\267\370\177q\267\064\201\211\267\000\000\000\000\000\000\000\000D\000\000\000\254\347\377\277T\256k\267\000\000\000\000\331Be\267\335\022\253U\020Ee\267\274\346\377\277\034\223\211\267`\234r\267\000\000\000\000Ԝ\211\267x\346\377\277\341-p\267Ԝ\211\267D\000\000\000\364W]\267\000\000\000\000\254\347\377\277\005\000\000\000\214\265i\267\234~i\267\271~i\267\220\201i\267\254\303k\267"...
24 q = <optimized out>
25 ifrflags = {ifr_ifrn = {ifrn_name = "T\256k\267<\345\377\277\254\347\377\277\210\345\377\277"}, ifr_ifru = {ifru_addr = {sa_family = 32433, sa_data = "d\267<\345\377\277\254\347\377\277\210\345\377\277"}, ifru_dstaddr = {sa_family = 32433, sa_data = "d\267<\345\377\277\254\347\377\277\210\345\377\277"}, ifru_broadaddr = {sa_family = 32433, sa_data = "d\267<\345\377\277\254\347\377\277\210\345\377\277"}, ifru_netmask = {sa_family = 32433, sa_data = "d\267<\345\377\277\254\347\377\277\210\345\377\277"}, ifru_hwaddr = {sa_family = 32433, sa_data = "d\267<\345\377\277\254\347\377\277\210\345\377\277"}, ifru_flags = 32433, ifru_ivalue = -1218150735, ifru_mtu = -1218150735, ifru_map = {mem_start = 3076816561, mem_end = 3221218620, base_addr = 59308, irq = 255 '\377', dma = 191 '\277', port = 136 '\210'}, ifru_slave = "\261~d\267<\345\377\277\254\347\377\277\210\345\377\277", ifru_newname = "\261~d\267<\345\377\277\254\347\377\277\210\345\377\277", ifru_data = 0xb7647eb1, ifru_settings = {type = 3076816561, size = 3221218620, ifs_ifsu = {raw_hdlc = 0xbfffe7ac, cisco = 0xbfffe7ac, fr = 0xbfffe7ac, fr_pvc = 0xbfffe7ac, fr_pvc_info = 0xbfffe7ac, sync = 0xbfffe7ac, te1 = 0xbfffe7ac}}}}
26 ret = 1
27 #2 0xb76fefff in pcap_platform_finddevs (alldevsp=0xbfffe758, errbuf=0xbfffe7ac "tun0: You don't have permission to capture on that device (socket: Operation not permitted)") at ./pcap-linux.c:2081
28 ret = <optimized out>
29 #3 0xb7701232 in pcap_findalldevs (alldevsp=0xbfffe7a8, errbuf=0xbfffe7ac "tun0: You don't have permission to capture on that device (socket: Operation not permitted)") at ./fad-getad.c:275
30 devlist = 0x0
31 ifap = 0xb7899328
32 ifa = 0x0
33 addr = <optimized out>
34 netmask = <optimized out>
35 broadaddr = <optimized out>
36 dstaddr = <optimized out>
37 addr_size = <optimized out>
38 broadaddr_size = <optimized out>
39 dstaddr_size = <optimized out>
40 ret = 0
41 p = <optimized out>
42 q = <optimized out>
43 #4 0xb788969d in get_interface_list_findalldevs (err=0xbfffe978, err_str=0xbfffe974) at capture-pcap-util.c:174
44 il = 0x0
45 alldevs = 0xb789629c
46 dev = <optimized out>
47 if_info = <optimized out>
48 errbuf = "tun0: You don't have permission to capture on that device (socket: Operation not permitted)\000\000\000\203\267\342\071y\267Pi\211\267\000i\211\267\017\000\000\000ݍw\267\001\000\000\000\f\000\000\000Sni\267B\254l\267</\204\267\000s]\267h\350\377\277\066\000\204\267\001\000\000\000\001\000G_\022\000\000\000\004\000\000\000\060i\211\267\001\000\000\000\002\000\000\000 \000\000\000\002\000\000\000\001\000\000\000\335\177i\267\\\024y\267\306\177i\267\000\000G_\271~i\267āi\267\270\303k\267\020\000\000\000\020\000\000\000\000\000\000\000\200\303k\267\001\000\000\000\260\303k\267T\256"...
49 #5 0xb78879c0 in get_interface_list (err=0xbfffe978, err_str=0xbfffe974) at capture-pcap-util-unix.c:110
50 No locals.
51 #6 0xb788d9d2 in capture_interface_list (err=0xbfffe978, err_str=0xbfffe974) at dumpcap.c:797
52 No locals.
53 #7 0xb7889345 in capture_opts_trim_iface (capture_opts=0xb7895060, capture_device=0x0) at capture_opts.c:770
54 if_list = <optimized out>
55 if_info = <optimized out>
56 err = <optimized out>
57 err_str = <optimized out>
58 options = {name = 0x0, descr = 0x0, cfilter = 0x0, snaplen = -1217671968, linktype = 0, promisc_mode = -1217679788, buffer_size = -1073746668, monitor_mode = -1073747560}
59 #8 0xb788e6cd in main (argc=<optimized out>, argv=<optimized out>) at dumpcap.c:3850
60 opt = <optimized out>
61 arg_error = 0
62 action = {__sigaction_handler = {sa_handler = 0xb788b392 <capture_cleanup_handler>, sa_sigaction = 0xb788b392 <capture_cleanup_handler>}, sa_mask = {__val = {0 <repeats 32 times>}}, sa_flags = 0, sa_restorer = 0}
63 oldaction = {__sigaction_handler = {sa_handler = 0, sa_sigaction = 0}, sa_mask = {__val = {0, 0, 5, 1598488576, 7, 1437274845, 14, 1598488577, 16, 3078868144, 0, 1, 3221219528, 3078170014, 8, 0, 4, 1437274845, 3079230456, 3078868144, 3221219576, 1437274845, 3078869408, 3078868144, 3221219576, 3078868144, 3078869408, 1, 3221219576, 3078278760, 3077292928, 3079221340}}, sa_flags = 0, sa_restorer = 0xaa71a380}
64 start_capture = 1
65 stats_known = 0
66 stats = {ps_recv = 0, ps_drop = 0, ps_ifdrop = 0}
67 list_interfaces = 0
68 list_link_layer_types = 0
69 print_bpf_code = 0
70 machine_readable = 0
71 print_statistics = 0
72 status = <optimized out>
73 run_once_args = 0
74 i = <optimized out>
75 A debugging session is active.
76
77 Inferior 1 [process 829] will be killed.
78
79 Quit anyway? (y or n) [answered Y; input not from terminal]
80
81 --
82 WBR, Alex.

Replies

Subject Author
Re: [gentoo-hardened] Security Level: high/server/workstation/virtualization pageexec@××××××××.hu
Report Message
Find on MARC Find on Google Groups