Sep 21, 2017, 11:35 am

News:

Ufasoft Coin 0.110 new features: SOCKS5, TOR,
bootstrap.dat DB format


icqdump под Linux

Started by Andy Hardy, Dec 03, 2008, 03:26 pm

previous topic - next topic
Go Down

int_19h

Пересобрал без оптимизации:
Quote
linux-n2le:/usr/src/ufasoft_sniffer-4.162 # ./configure CXXFLAGS="-O0"
linux-n2le:/usr/src/ufasoft_sniffer-4.162 # make && make install


Сделал дебаг:
Quote
linux-n2le:/usr/src/ufasoft_sniffer-4.162 # gdb --args /usr/local/bin/icqdump -i eth2 -n -l /root/icqdumplogs -P ICQ
GNU gdb (GDB) SUSE (7.5.1-2.1.1)
Copyright (C) 2012 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-suse-linux".
For bug reporting instructions, please see:
<http://www.gnu.org/software/gdb/bugs/>...
Reading symbols from /usr/local/bin/icqdump...done.
(gdb) run
Starting program: /usr/local/bin/icqdump -i eth2 -n -l /root/icqdumplogs -P ICQ
Missing separate debuginfo for /lib64/ld-linux-x86-64.so.2
Try: zypper install -C "debuginfo(build-id)=ecb8ef1a6904a2a3ec60a527f415f520c8636158"
Missing separate debuginfo for /lib64/libdl.so.2
Try: zypper install -C "debuginfo(build-id)=da368634ea211229f45d2f8d32e7da61800b4c75"
Missing separate debuginfo for /lib64/librt.so.1
Try: zypper install -C "debuginfo(build-id)=c91b3d0735b49e2ccf493b8c91612978c783a732"
Missing separate debuginfo for /usr/lib64/libcurl.so.4
Try: zypper install -C "debuginfo(build-id)=602e145b017bca42d4e13601fcabff7c07c2fdb7"
Missing separate debuginfo for /lib64/libpthread.so.0
Try: zypper install -C "debuginfo(build-id)=ef5f5dbcb2398c608fef7884e1bfb65be3b5f0ef"
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib64/libthread_db.so.1".
Missing separate debuginfo for /usr/lib64/libpcre.so.1
Try: zypper install -C "debuginfo(build-id)=91e4d9d2fc2824fbd0f18002a4fc2a6fd4921c2b"
Missing separate debuginfo for /lib64/libz.so.1
Try: zypper install -C "debuginfo(build-id)=bef211df25174b1ba44958f0e7f8e301d59c8de5"
Missing separate debuginfo for /usr/lib64/libxml2.so.2
Try: zypper install -C "debuginfo(build-id)=3d20d934cc74ae999d7485c9ca5d75347e9e3ac1"
Missing separate debuginfo for /usr/lib64/libpcap.so.1
Try: zypper install -C "debuginfo(build-id)=ea1397a748a5dd750c310332f8fa9b5d4e4193ae"
Missing separate debuginfo for /usr/lib64/libstdc++.so.6
Try: zypper install -C "debuginfo(build-id)=babb0ba2913558a7b90bb6d23750a6a1885bfb59"
Missing separate debuginfo for /lib64/libm.so.6
Try: zypper install -C "debuginfo(build-id)=24fba01931c773fd5b4688b34c4acde47ea77cb9"
Missing separate debuginfo for /lib64/libgcc_s.so.1
Try: zypper install -C "debuginfo(build-id)=79056b80865c15deabba7b20155ea27c76d91bf1"
Missing separate debuginfo for /lib64/libc.so.6
Try: zypper install -C "debuginfo(build-id)=bd1473e8e6a4c10a14731b5be4b35b4e87db2af7"
Missing separate debuginfo for /usr/lib64/libidn.so.11
Try: zypper install -C "debuginfo(build-id)=05adbf099c499df4fd84b47a60a193bb20ed8319"
Missing separate debuginfo for /usr/lib64/liblber-2.4.so.2
Try: zypper install -C "debuginfo(build-id)=6f3db6703ecdd1ec66ccfe444c5a96de4f3e394d"
Missing separate debuginfo for /usr/lib64/libldap-2.4.so.2
Try: zypper install -C "debuginfo(build-id)=7b580023b6ffc038fce5bd512353932739ed3774"
Missing separate debuginfo for /usr/lib64/libgssapi_krb5.so.2
Try: zypper install -C "debuginfo(build-id)=e3a901b1f61b3d3af51c634823d104e28c1ae401"
Missing separate debuginfo for /lib64/libssl.so.1.0.0
Try: zypper install -C "debuginfo(build-id)=53bf53b320c5486b4a67cf831bedc11b2b974f29"
Missing separate debuginfo for /lib64/libcrypto.so.1.0.0
Try: zypper install -C "debuginfo(build-id)=de605f69ece10d58884634b0ee76e52b23dc0874"
Missing separate debuginfo for /usr/lib64/libssh2.so.1
Try: zypper install -C "debuginfo(build-id)=2bdbeade263bd184d4c187528f36b44f5d2b4204"
Missing separate debuginfo for /usr/lib64/liblzma.so.5
Try: zypper install -C "debuginfo(build-id)=e50639028c7d64c96baed4bee29c58975da2036c"
Missing separate debuginfo for /usr/lib64/libusb-1.0.so.0
Try: zypper install -C "debuginfo(build-id)=b32060f5945af87c9e01434be60acf8fe7c4969e"
Missing separate debuginfo for /lib64/libresolv.so.2
Try: zypper install -C "debuginfo(build-id)=5abb77d6cb67d9e36b97d842daba249e71b499d7"
Missing separate debuginfo for /usr/lib64/libsasl2.so.2
Try: zypper install -C "debuginfo(build-id)=2902c5d2245c16466c9ff6d9ca8cc38e91ae47ef"
Missing separate debuginfo for /usr/lib64/libkrb5.so.3
Try: zypper install -C "debuginfo(build-id)=48e1bcf8377184b0ec0983fb418a73d99cd6c33f"
Missing separate debuginfo for /usr/lib64/libk5crypto.so.3
Try: zypper install -C "debuginfo(build-id)=b7f7c265dcb23a60af11613793f6f0cb8eee560c"
Missing separate debuginfo for /lib64/libcom_err.so.2
Try: zypper install -C "debuginfo(build-id)=15ec626a4c628421c9c693fa21175a817f7f8976"
Missing separate debuginfo for /usr/lib64/libkrb5support.so.0
Try: zypper install -C "debuginfo(build-id)=9486ce8bcd7211fde0b9b10947c4c7a25aa6c432"
Missing separate debuginfo for /lib64/libkeyutils.so.1
Try: zypper install -C "debuginfo(build-id)=ae099b4bdae29c3ce6aa1bab24d0155c0f63a7b7"
Missing separate debuginfo for /lib64/libselinux.so.1
Try: zypper install -C "debuginfo(build-id)=df28565c4eb0ae63c2db3ff5c7bc917e720fcb01"
Missing separate debuginfo for /usr/lib64/gconv/UTF-16.so
Try: zypper install -C "debuginfo(build-id)=9cf3924654940d763e77dc95b9970b97ed0ce5e1"
ICQ Dump 4.162  Copyright (c) 1997-2012 Ufasoft  http://ufasoft.com/sniffer
[New Thread 0x7ffff30b8700 (LWP 3436)]
[New Thread 0x7ffff24d7700 (LWP 3437)]
[New Thread 0x7ffff18f6700 (LWP 3438)]
[New Thread 0x7ffff10f5700 (LWP 3439)]
[New Thread 0x7fffebfff700 (LWP 3440)]
[New Thread 0x7fffeb7fe700 (LWP 3441)]
[New Thread 0x7fffeac1d700 (LWP 3442)]
[New Thread 0x7fffea03c700 (LWP 3443)]
[New Thread 0x7fffe945b700 (LWP 3444)]
[New Thread 0x7fffe887a700 (LWP 3445)]
Saving logs to: /root/icqdumplogs
[New Thread 0x7fffdbfff700 (LWP 3446)]
gcore

Program received signal SIGSEGV, Segmentation fault.
0x0000000000414042 in Snif::Ip4Packet::get_IHL() ()
(gdb) gcore
Saved corefile core.3432
(gdb) bt
#0  0x0000000000414042 in Snif::Ip4Packet::get_IHL() ()
#1  0x0000000000414066 in Snif::Ip4Packet::propclass_IHL::operator unsigned char() const ()
#2  0x0000000000414434 in Snif::Ip4Packet::GetLocalDataOffset() ()
#3  0x0000000000433bb9 in Snif::PluginPacket::GetData() ()
#4  0x0000000000414280 in Snif::Ip4Packet::GetData() ()
#5  0x0000000000436b25 in Snif::TcpWrap::TcpWrap(Snif::TcpPacket*) ()
#6  0x00000000004372d0 in Snif::TcpObj::ProcessPacket(Snif::PluginPacket*) ()
#7  0x0000000000433327 in Snif::SnifferPlugin::AnalyzeCreated(Snif::PluginPacket*) ()
#8  0x0000000000433368 in Snif::SnifferPlugin::AnalyzeCreated(Snif::PluginPacket&, Snif::SnifferPacketBase*) ()
#9  0x00000000004378e8 in Snif::TcpObj::Analyze(Snif::SnifferPacketBase*) ()
#10 0x0000000000433083 in Snif::SnifferPlugin::ProcessSubAnalyzers(Snif::PluginPacket*) ()
#11 0x00000000004330f4 in Snif::SnifferPlugin::ProcessPacket(Snif::PluginPacket*) ()
#12 0x000000000041318b in Snif::Ip4Obj::FragmentedPacket(Snif::Ip4Packet*) ()
#13 0x000000000041375d in Snif::Ip4Obj::ProcessPacket(Snif::PluginPacket*) ()
#14 0x0000000000433327 in Snif::SnifferPlugin::AnalyzeCreated(Snif::PluginPacket*) ()
#15 0x0000000000433368 in Snif::SnifferPlugin::AnalyzeCreated(Snif::PluginPacket&, Snif::SnifferPacketBase*) ()
#16 0x0000000000413a05 in Snif::Ip4Obj::Analyze(Snif::SnifferPacketBase*) ()
#17 0x0000000000433083 in Snif::SnifferPlugin::ProcessSubAnalyzers(Snif::PluginPacket*) ()
#18 0x00000000004330f4 in Snif::SnifferPlugin::ProcessPacket(Snif::PluginPacket*) ()
#19 0x000000000040f46f in Snif::MACObj::ProcessPacket(Snif::PluginPacket*) ()
#20 0x0000000000433327 in Snif::SnifferPlugin::AnalyzeCreated(Snif::PluginPacket*) ()
#21 0x00000000004333b8 in Snif::SnifferPlugin::Analyze(Snif::SnifferPacketBase*) ()
#22 0x0000000000433083 in Snif::SnifferPlugin::ProcessSubAnalyzers(Snif::PluginPacket*) ()
#23 0x00000000004330f4 in Snif::SnifferPlugin::ProcessPacket(Snif::PluginPacket*) ()
#24 0x000000000040f46f in Snif::MACObj::ProcessPacket(Snif::PluginPacket*) ()
#25 0x0000000000433327 in Snif::SnifferPlugin::AnalyzeCreated(Snif::PluginPacket*) ()
#26 0x00000000004333b8 in Snif::SnifferPlugin::Analyze(Snif::SnifferPacketBase*) ()
#27 0x0000000000433083 in Snif::SnifferPlugin::ProcessSubAnalyzers(Snif::PluginPacket*) ()
#28 0x00000000004330f4 in Snif::SnifferPlugin::ProcessPacket(Snif::PluginPacket*) ()
#29 0x000000000040f46f in Snif::MACObj::ProcessPacket(Snif::PluginPacket*) ()
#30 0x0000000000433327 in Snif::SnifferPlugin::AnalyzeCreated(Snif::PluginPacket*) ()
#31 0x0000000000433368 in Snif::SnifferPlugin::AnalyzeCreated(Snif::PluginPacket&, Snif::SnifferPacketBase*) ()
#32 0x000000000040ff08 in Snif::EthernetObj::Analyze(Snif::SnifferPacketBase*) ()
#33 0x000000000041bed6 in Snif::MACObj::OnReceived(Snif::SnifferPacket*) ()
#34 0x000000000042a4c7 in Snif::CSnifEng::Loop(Ext::TimeSpan const&) ()
#35 0x0000000000427153 in Snif::CProtoEng::Loop(Ext::TimeSpan const&) ()
#36 0x000000000047b5c5 in CIcqDumpApp::Execute() ()
#37 0x00000000004c658d in Ext::CConApp::Main(int, char**) ()
#38 0x000000000047aeaa in main ()


Выложил новый дамп:
https://drive.google.com/folderview?id=0B5NYkIHMBHBRNkpoMklvS1cyb28&usp=sharing

Спасибо, уважаемый ufasoft за отзывчивость!

ufasoft

prease upload  icqdump binary too. It contains debugging symbol info


ufasoft

К сожалению получилось без отладочной информации
Наверное надо было так:

Code: [Select]
./configure CXXFLAGS="-O0 -g"

int_19h

Без проблем:
Quote
linux-n2le:/usr/src/ufasoft_sniffer-4.162 # make clean
linux-n2le:/usr/src/ufasoft_sniffer-4.162 # ./configure CXXFLAGS="-O0 -g"
linux-n2le:/usr/src/ufasoft_sniffer-4.162 # make && make install
linux-n2le:/usr/src/ufasoft_sniffer-4.162 # ll /usr/local/bin/
total 20896
-rwxr-xr-x 1 root root 18212145 Jul 29 09:45 icqdump
-rwxr-xr-x 1 root root   3182209 Jul 29 09:41 icqdump.old


Дебаг:
Quote
linux-n2le:/usr/src/ufasoft_sniffer-4.162 # gdb --args /usr/local/bin/icqdump -i eth2 -n -l /root/icqdumplogs -P ICQ
GNU gdb (GDB) SUSE (7.5.1-2.1.1)
Copyright (C) 2012 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-suse-linux".
For bug reporting instructions, please see:
<http://www.gnu.org/software/gdb/bugs/>...
Reading symbols from /usr/local/bin/icqdump...done.
(gdb) run
Starting program: /usr/local/bin/icqdump -i eth2 -n -l /root/icqdumplogs -P ICQ
Missing separate debuginfo for /lib64/ld-linux-x86-64.so.2
Try: zypper install -C "debuginfo(build-id)=ecb8ef1a6904a2a3ec60a527f415f520c8636158"
Missing separate debuginfo for /lib64/libdl.so.2
Try: zypper install -C "debuginfo(build-id)=da368634ea211229f45d2f8d32e7da61800b4c75"
Missing separate debuginfo for /lib64/librt.so.1
Try: zypper install -C "debuginfo(build-id)=c91b3d0735b49e2ccf493b8c91612978c783a732"
Missing separate debuginfo for /usr/lib64/libcurl.so.4
Try: zypper install -C "debuginfo(build-id)=602e145b017bca42d4e13601fcabff7c07c2fdb7"
Missing separate debuginfo for /lib64/libpthread.so.0
Try: zypper install -C "debuginfo(build-id)=ef5f5dbcb2398c608fef7884e1bfb65be3b5f0ef"
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib64/libthread_db.so.1".
Missing separate debuginfo for /usr/lib64/libpcre.so.1
Try: zypper install -C "debuginfo(build-id)=91e4d9d2fc2824fbd0f18002a4fc2a6fd4921c2b"
Missing separate debuginfo for /lib64/libz.so.1
Try: zypper install -C "debuginfo(build-id)=bef211df25174b1ba44958f0e7f8e301d59c8de5"
Missing separate debuginfo for /usr/lib64/libxml2.so.2
Try: zypper install -C "debuginfo(build-id)=3d20d934cc74ae999d7485c9ca5d75347e9e3ac1"
Missing separate debuginfo for /usr/lib64/libpcap.so.1
Try: zypper install -C "debuginfo(build-id)=ea1397a748a5dd750c310332f8fa9b5d4e4193ae"
Missing separate debuginfo for /usr/lib64/libstdc++.so.6
Try: zypper install -C "debuginfo(build-id)=babb0ba2913558a7b90bb6d23750a6a1885bfb59"
Missing separate debuginfo for /lib64/libm.so.6
Try: zypper install -C "debuginfo(build-id)=24fba01931c773fd5b4688b34c4acde47ea77cb9"
Missing separate debuginfo for /lib64/libgcc_s.so.1
Try: zypper install -C "debuginfo(build-id)=79056b80865c15deabba7b20155ea27c76d91bf1"
Missing separate debuginfo for /lib64/libc.so.6
Try: zypper install -C "debuginfo(build-id)=bd1473e8e6a4c10a14731b5be4b35b4e87db2af7"
Missing separate debuginfo for /usr/lib64/libidn.so.11
Try: zypper install -C "debuginfo(build-id)=05adbf099c499df4fd84b47a60a193bb20ed8319"
Missing separate debuginfo for /usr/lib64/liblber-2.4.so.2
Try: zypper install -C "debuginfo(build-id)=6f3db6703ecdd1ec66ccfe444c5a96de4f3e394d"
Missing separate debuginfo for /usr/lib64/libldap-2.4.so.2
Try: zypper install -C "debuginfo(build-id)=7b580023b6ffc038fce5bd512353932739ed3774"
Missing separate debuginfo for /usr/lib64/libgssapi_krb5.so.2
Try: zypper install -C "debuginfo(build-id)=e3a901b1f61b3d3af51c634823d104e28c1ae401"
Missing separate debuginfo for /lib64/libssl.so.1.0.0
Try: zypper install -C "debuginfo(build-id)=53bf53b320c5486b4a67cf831bedc11b2b974f29"
Missing separate debuginfo for /lib64/libcrypto.so.1.0.0
Try: zypper install -C "debuginfo(build-id)=de605f69ece10d58884634b0ee76e52b23dc0874"
Missing separate debuginfo for /usr/lib64/libssh2.so.1
Try: zypper install -C "debuginfo(build-id)=2bdbeade263bd184d4c187528f36b44f5d2b4204"
Missing separate debuginfo for /usr/lib64/liblzma.so.5
Try: zypper install -C "debuginfo(build-id)=e50639028c7d64c96baed4bee29c58975da2036c"
Missing separate debuginfo for /usr/lib64/libusb-1.0.so.0
Try: zypper install -C "debuginfo(build-id)=b32060f5945af87c9e01434be60acf8fe7c4969e"
Missing separate debuginfo for /lib64/libresolv.so.2
Try: zypper install -C "debuginfo(build-id)=5abb77d6cb67d9e36b97d842daba249e71b499d7"
Missing separate debuginfo for /usr/lib64/libsasl2.so.2
Try: zypper install -C "debuginfo(build-id)=2902c5d2245c16466c9ff6d9ca8cc38e91ae47ef"
Missing separate debuginfo for /usr/lib64/libkrb5.so.3
Try: zypper install -C "debuginfo(build-id)=48e1bcf8377184b0ec0983fb418a73d99cd6c33f"
Missing separate debuginfo for /usr/lib64/libk5crypto.so.3
Try: zypper install -C "debuginfo(build-id)=b7f7c265dcb23a60af11613793f6f0cb8eee560c"
Missing separate debuginfo for /lib64/libcom_err.so.2
Try: zypper install -C "debuginfo(build-id)=15ec626a4c628421c9c693fa21175a817f7f8976"
Missing separate debuginfo for /usr/lib64/libkrb5support.so.0
Try: zypper install -C "debuginfo(build-id)=9486ce8bcd7211fde0b9b10947c4c7a25aa6c432"
Missing separate debuginfo for /lib64/libkeyutils.so.1
Try: zypper install -C "debuginfo(build-id)=ae099b4bdae29c3ce6aa1bab24d0155c0f63a7b7"
Missing separate debuginfo for /lib64/libselinux.so.1
Try: zypper install -C "debuginfo(build-id)=df28565c4eb0ae63c2db3ff5c7bc917e720fcb01"
Missing separate debuginfo for /usr/lib64/gconv/UTF-16.so
Try: zypper install -C "debuginfo(build-id)=9cf3924654940d763e77dc95b9970b97ed0ce5e1"
ICQ Dump 4.162  Copyright (c) 1997-2012 Ufasoft  http://ufasoft.com/sniffer
[New Thread 0x7ffff30b8700 (LWP 10074)]
[New Thread 0x7ffff24d7700 (LWP 10075)]
[New Thread 0x7ffff18f6700 (LWP 10076)]
[New Thread 0x7ffff10f5700 (LWP 10077)]
[New Thread 0x7ffff0514700 (LWP 10078)]
[New Thread 0x7fffef933700 (LWP 10079)]
[New Thread 0x7fffeed52700 (LWP 10080)]
[New Thread 0x7fffee171700 (LWP 10081)]
[New Thread 0x7fffed590700 (LWP 10082)]
[New Thread 0x7fffec9af700 (LWP 10083)]
Saving logs to: /root/icqdumplogs
[New Thread 0x7fffcffff700 (LWP 10084)]
gcore
(ICQ сообщения я удалил отсюда)

Program received signal SIGSEGV, Segmentation fault.
0x0000000000414042 in Snif::Ip4Packet::get_IHL (this=0x884b30) at snif/ip.cpp:66
66              byte get_IHL() { return m_ip->ip_hl; }
(gdb) gcore
Saved corefile core.10063
(gdb) bt
#0  0x0000000000414042 in Snif::Ip4Packet::get_IHL (this=0x884b30) at snif/ip.cpp:66
#1  0x0000000000414066 in Snif::Ip4Packet::propclass_IHL::operator unsigned char (this=0x884b68) at snif/ip.cpp:67
#2  0x0000000000414434 in Snif::Ip4Packet::GetLocalDataOffset (this=0x884b30) at snif/ip.cpp:135
#3  0x0000000000433bb9 in Snif::PluginPacket::GetData (this=0x884b30) at snif/standardplugin.cpp:400
#4  0x0000000000414280 in Snif::Ip4Packet::GetData (this=0x884b30) at snif/ip.cpp:100
#5  0x0000000000436b25 in Snif::TcpWrap::TcpWrap (this=0x7fffffffcd60, iTP=0x7fffffffcf10) at snif/tcp.cpp:168
#6  0x00000000004372d0 in Snif::TcpObj::ProcessPacket (this=0x7a3eb0, iPacket=0x7fffffffcf10) at snif/tcp.cpp:323
#7  0x0000000000433327 in Snif::SnifferPlugin::AnalyzeCreated (this=0x7a3eb0, iPP=0x7fffffffcf10)
    at snif/standardplugin.cpp:149
#8  0x0000000000433368 in Snif::SnifferPlugin::AnalyzeCreated (this=0x7a3eb0, pp=..., iPacket=0x884b30)
    at snif/standardplugin.cpp:154
#9  0x00000000004378e8 in Snif::TcpObj::Analyze (this=0x7a3eb0, iPacket=0x884b30) at snif/tcp.cpp:405
#10 0x0000000000433083 in Snif::SnifferPlugin::ProcessSubAnalyzers (this=0x7a3130, iPacket=0x884b30)
    at snif/standardplugin.cpp:78
#11 0x00000000004330f4 in Snif::SnifferPlugin::ProcessPacket (this=0x7a3130, iPacket=0x884b30)
    at snif/standardplugin.cpp:102
#12 0x000000000041318b in Snif::Ip4Obj::FragmentedPacket (this=0x7a3130, iIP=0x884d20) at snif/ip.cpp:560
#13 0x000000000041375d in Snif::Ip4Obj::ProcessPacket (this=0x7a3130, iPacket=0x7fffffffd550) at snif/ip.cpp:639
#14 0x0000000000433327 in Snif::SnifferPlugin::AnalyzeCreated (this=0x7a3130, iPP=0x7fffffffd550)
    at snif/standardplugin.cpp:149
#15 0x0000000000433368 in Snif::SnifferPlugin::AnalyzeCreated (this=0x7a3130, pp=..., iPacket=0x89d3c0)
    at snif/standardplugin.cpp:154
#16 0x0000000000413a05 in Snif::Ip4Obj::Analyze (this=0x7a3130, iPacket=0x89d3c0) at snif/ip.cpp:664
#17 0x0000000000433083 in Snif::SnifferPlugin::ProcessSubAnalyzers (this=0x7a2b30, iPacket=0x89d3c0)
    at snif/standardplugin.cpp:78
#18 0x00000000004330f4 in Snif::SnifferPlugin::ProcessPacket (this=0x7a2b30, iPacket=0x89d3c0)
    at snif/standardplugin.cpp:102
#19 0x000000000040f46f in Snif::MACObj::ProcessPacket (this=0x7a2b30, iPacket=0x89d3c0) at inc/standard-plugin.h:467
#20 0x0000000000433327 in Snif::SnifferPlugin::AnalyzeCreated (this=0x7a2b30, iPP=0x89d3c0)
    at snif/standardplugin.cpp:149
#21 0x00000000004333b8 in Snif::SnifferPlugin::Analyze (this=0x7a2b30, iPacket=0x884c50)
    at snif/standardplugin.cpp:159
#22 0x0000000000433083 in Snif::SnifferPlugin::ProcessSubAnalyzers (this=0x7a2870, iPacket=0x884c50)
    at snif/standardplugin.cpp:78
#23 0x00000000004330f4 in Snif::SnifferPlugin::ProcessPacket (this=0x7a2870, iPacket=0x884c50)
    at snif/standardplugin.cpp:102
#24 0x000000000040f46f in Snif::MACObj::ProcessPacket (this=0x7a2870, iPacket=0x884c50) at inc/standard-plugin.h:467
#25 0x0000000000433327 in Snif::SnifferPlugin::AnalyzeCreated (this=0x7a2870, iPP=0x884c50)
    at snif/standardplugin.cpp:149
#26 0x00000000004333b8 in Snif::SnifferPlugin::Analyze (this=0x7a2870, iPacket=0x7fffffffd980)
    at snif/standardplugin.cpp:159
#27 0x0000000000433083 in Snif::SnifferPlugin::ProcessSubAnalyzers (this=0x7a2320, iPacket=0x7fffffffd980)
    at snif/standardplugin.cpp:78
#28 0x00000000004330f4 in Snif::SnifferPlugin::ProcessPacket (this=0x7a2320, iPacket=0x7fffffffd980)
    at snif/standardplugin.cpp:102
#29 0x000000000040f46f in Snif::MACObj::ProcessPacket (this=0x7a2320, iPacket=0x7fffffffd980)
    at inc/standard-plugin.h:467
#30 0x0000000000433327 in Snif::SnifferPlugin::AnalyzeCreated (this=0x7a2320, iPP=0x7fffffffd980)
    at snif/standardplugin.cpp:149
#31 0x0000000000433368 in Snif::SnifferPlugin::AnalyzeCreated (this=0x7a2320, pp=..., iPacket=0x7fffd4020460)
    at snif/standardplugin.cpp:154
#32 0x000000000040ff08 in Snif::EthernetObj::Analyze (this=0x7a2320, iPacket=0x7fffd4020460)
    at snif/ethernet.cpp:105
#33 0x000000000041bed6 in Snif::MACObj::OnReceived (this=0x7a2320, sp=0x7fffd4020460) at snif/mac.cpp:248
#34 0x000000000042a4c7 in Snif::CSnifEng::Loop (timespan=...) at inc/snif-packet-imp.h:474
#35 0x0000000000427153 in Snif::CProtoEng::Loop (this=0x7fffffffdc40, timespan=...) at snif/proto-eng.cpp:254
#36 0x000000000047b5c5 in CIcqDumpApp::Execute (this=0x771940 <theApp>) at msgan/icqdump.cpp:265
#37 0x00000000004c658d in Ext::CConApp::Main (this=0x771940 <theApp>, argc=8, argv=0x7fffffffe3b8)
    at el/libext/ext-app.cpp:325
#38 0x000000000047aeaa in main (argc=8, argv=0x7fffffffe3b8) at msgan/icqdump.cpp:295


Дамп и бинарник:
https://docs.google.com/file/d/0B5NYkIHMBHBRX1MyUVRfQUF3Wkk/edit?usp=sharing

ufasoft


int_19h

К сожалению теперь не собирается:
Quote
linux-n2le:/usr/src/ufasoft_sniffer-4.170 # ./configure
configure: loading site script /usr/share/site/x86_64-unknown-linux-gnu
checking build system type... x86_64-unknown-linux-gnu
checking host system type... x86_64-unknown-linux-gnu
checking target system type... x86_64-unknown-linux-gnu
checking for a BSD-compatible install... /usr/bin/install -c
checking whether build environment is sane... yes
/usr/src/ufasoft_sniffer-4.170/missing: Unknown `--is-lightweight' option
Try `/usr/src/ufasoft_sniffer-4.170/missing --help' for more information
configure: WARNING: 'missing' script is too old or missing
checking for a thread-safe mkdir -p... /usr/bin/mkdir -p
checking for gawk... gawk
checking whether make sets $(MAKE)... yes
checking whether make supports nested variables... yes
checking whether make supports nested variables... (cached) yes
checking for g++... g++
checking whether the C++ compiler works... yes
checking for C++ compiler default output file name... a.out
checking for suffix of executables...
checking whether we are cross compiling... no
checking for suffix of object files... o
checking whether we are using the GNU C++ compiler... yes
checking whether g++ accepts -g... yes
checking for style of include used by make... GNU
checking dependency style of g++... gcc3
checking for gcc... gcc
checking whether we are using the GNU C compiler... yes
checking whether gcc accepts -g... yes
checking for gcc option to accept ISO C89... none needed
checking dependency style of gcc... gcc3
checking whether gcc and cc understand -c and -o together... yes
checking for g++... /usr/bin/g++
checking for gcc 4.4... yes
checking whether C++ compiler accepts -std=c++1y... no
checking for pthread_setname_np... no
checking for pcap_open_live in -lpcap... yes
checking for xmlTextReaderDepth in -lxml2... yes
checking for deflate in -lz... yes
checking for pcre_compile in -lpcre... yes
checking for pthread_create in -lpthread... yes
checking for curl_global_init in -lcurl... yes
checking for clock_gettime in -lrt... yes
checking for library containing dlopen... -ldl
checking for library containing iconv... none required
checking for sqlite3_open16 in -lsqlite3... no
configure: WARNING: SQLite not found. Install sqlite3-dev package for saving messages to database
checking for pkg-config... /usr/bin/pkg-config
checking pkg-config is at least version 0.9.0... yes
checking for LIBCURL... yes
checking if compiling with clang... no
checking that generated files are newer than configure... done
configure: creating ./config.status
config.status: creating Makefile
config.status: creating config.h
config.status: executing depfiles commands



------------------------------------------------------------------------
ufasoft_sniffer 4.170
------------------------------------------------------------------------


Configuration Options Summary:


Compilation............: make (gmake on FreeBSD)
  CPPFLAGS.............:
  CFLAGS...............: -g -O2
  CXXFLAGS.............. -g -O2 -std=c++0x
  LDFLAGS..............:
  LDADD................: -lcurl

Installation...........: make install (as root if needed, with 'su' or 'sudo')
  prefix...............: /usr/local

linux-n2le:/usr/src/ufasoft_sniffer-4.170 # make
g++ -DHAVE_CONFIG_H -I.  -Iinc -I/usr/include/libxml2 -pthread    -Wno-multichar  -Wno-invalid-offsetof  -g -O2 -std=c++0x -c -g -O2 -std=c++0x el/ext.h
el/ext.h:11:9: warning: #pragma once in main file [enabled by default]
In file included from el/ext.h:17:0:
./el/libext.h:190:26: fatal error: ext_messages.h: No such file or directory
compilation terminated.
make: *** [el/ext.h.gch] Error 1


Попробовал скопировать ext_messages.h из прошлой версии, но тщетно:
Quote
linux-n2le:/usr/src/ufasoft_sniffer-4.162 # cp inc/ext_messages.h ../ufasoft_sniffer-4.170/inc/
linux-n2le:/usr/src/ufasoft_sniffer-4.162 # cd ../ufasoft_sniffer-4.170/
linux-n2le:/usr/src/ufasoft_sniffer-4.170 # make
make  all-am
make[1]: Entering directory `/usr/src/ufasoft_sniffer-4.170'
  CXX      snif/arp.o
In file included from ./el/libext/ext-cpp.h:1102:0,
                 from ./el/libext.h:1433,
                 from ./el/ext.h:17,
                 from snif/arp.cpp:9:
./el/libext/ext-fw.h: In member function 'int Ext::MemoryMappedFile::GetHandle()':
./el/libext/ext-fw.h:526:60: error: cast from 'Ext::HANDLE {aka void*}' to 'int' loses precision [-fpermissive]
make[1]: *** [snif/arp.o] Error 1
make[1]: Leaving directory `/usr/src/ufasoft_sniffer-4.170'
make: *** [all] Error 2

ufasoft

Исправлено, скачайте исходники заново

int_19h

Огромное спасибо, ufasoft! Всё работает, будем надеяться, что стабильно.

Go Up