[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Problems with gdb not catching breakpoints in shared .dynlib

Subject: Re: Problems with gdb not catching breakpoints in shared .dynlib
From: Eric Albert <email@hidden>
Date: Mon, 15 Nov 2004 00:29:12 -0800
Delivered-to: email@hidden
Delivered-to: email@hidden

On Nov 12, 2004, at 7:14 PM, Greg Earle wrote:

On Nov 4, 2004, at 1:09 AM, Eric Albert <email@hidden> wrote:
On Nov 3, 2004, at 11:51 PM, Greg Earle wrote:
Eric Albert wrote:
On Nov 3, 2004, at 10:04 PM, Greg Earle wrote:
(I had to remove the "-O2" from CFLAGS to prevent a crash.)
I couldn't reproduce that crash.  Are you just running it as
'./sshblaster2 sship.txt'?
Yep. When "-O2" is in CFLAGS, it dies in strlen():
It still doesn't crash for me.  Oh, wait, yes it does if I re-enable
the fork and use 127.0.0.1.  More on that below.
(I never saw any "More on that below" about this strlen() crash :-) )


Erm, it was below.  In fact, it's the part you quoted below.

Breakpoint 1, string_from_char (what=0x682d7573 <Address 0x682d7573
out of bounds>) at string.c:41
0x682d7573 is "h-us", which only shows up in the code in the "ssh-userauth" string in ask_userauth in auth.c. Sounds like something's smashing the stack. (Random tip: Whenever you crash with a bad address, see if it looks like ASCII. If it does, you're probably crashing somewhere vaguely near where you referenced a string with those characters.)

Yep. Mac OS X's OpenSSL build appears to have AES support, so we use a blocksize of 16 in packet_read() in packet.c. That causes completeread() to overflow the 8-character buffer variable from packet_read. Change packet_read's buffer[8] to buffer[16] and things are much happier.

I made that change, but it had no effect - it still crashes at:

No, it did have an effect. It fixed the strlen crash. It apparently doesn't fix the other crash you're seeing. But again, that's on a printf that doesn't exist in the file you pointed us at. It's really quite difficult to figure out what's wrong when we're using different files. I put a printf at the same spot that seems similar to yours and it works fine for me.

At this point I'm stumped, it basically runs through 5 loops and
then croaks at the start of the 6th:

This doesn't reproduce for me. It's been running for about 15 minutes now, continuously printing out the same list of method names. I'm happy to help debug this further, but only if I can actually debug the same code you're running.

-Eric

_______________________________________________
Do not post admin requests to the list. They will be ignored.
Unix-porting mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/unix-porting/email@hidden

This email sent to email@hidden

References:
	>Re: Problems with gdb not catching breakpoints in shared .dynlib (From: Greg Earle <email@hidden>)

Prev by Date: Re: ftime
Next by Date: Re: Problems launching an FLTK carbon application - slight thread drift...
Previous by thread: Re: Problems with gdb not catching breakpoints in shared .dynlib
Next by thread: different execv path behavior
Index(es):
- Date
- Thread

Home