862116 – ettercap -C Segmentation Fault scanning hosts Fedora 17 KDE

Bug 862116 - ettercap -C Segmentation Fault scanning hosts Fedora 17 KDE

Summary: ettercap -C Segmentation Fault scanning hosts Fedora 17 KDE

Keywords:
Status:	CLOSED DUPLICATE of bug 860520
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	ettercap
Sub Component:
Version:	17
Hardware:	x86_64
OS:	Linux
Priority:	unspecified
Severity:	high
Target Milestone:	---
Assignee:	Gwyn Ciesla
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Duplicates (1):	896307 (view as bug list)
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2012-10-01 23:37 UTC by xset1980
Modified:	2013-08-05 00:06 UTC (History)
CC List:	6 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2013-01-23 15:16:05 UTC
Type:	Bug
Embargoed:
Dependent Products:

Attachments	(Terms of Use)
screenshot of the crash of ettercap on F17 after 3 times ctrl+s (44.04 KB, image/png) 2013-01-21 01:00 UTC, xset1980	no flags	Details
View All

Description xset1980 2012-10-01 23:37:01 UTC

Description of problem:

When Ettercap is open and scanning for host, after the ncurses screen crash, the program terminated with segmentation fault and show backtrace

Version-Release number of selected component (if applicable):

Ettercap 0.7.5
Fedora 17 x86_64 KDE

How reproducible:
Always

Steps to Reproduce:
1.ettercap -c -> Sniff -> Unified snifffing -> eth0 (yes i have eth0 because is configured the network by config files, i not use network manager.
2.ctrl+s 5-6 times and crash ncurses gui
3.termination causing segmentation fault
  
Actual results:

Ettercap unusable
Expected results:
Ettercap work like CentOS6.3

Additional info:

Similar to closed bug https://bugzilla.redhat.com/show_bug.cgi?id=659903 on Fedora 15

=============================================================================
Ooops ! This shouldn't happen...
Segmentation Fault...

Please recompile in debug mode, reproduce the bug and send a bugreport

 Have a nice day!
*** glibc detected *** ettercap: corrupted double-linked list: 0x00007f8978004750 ***
======= Backtrace: =========
/lib64/libc.so.6(+0x7adf6)[0x7f898c997df6]
/lib64/libc.so.6(+0x7e106)[0x7f898c99b106]
*** glibc detected *** ettercap: corrupted double-linked list: 0x00007f8978004750 ***
======= Backtrace: =========
/lib64/libc.so.6(+0x7adf6)[0x7f898c997df6]
/lib64/libc.so.6(+0x7c37e)[0x7f898c99937e]
/lib64/libc.so.6(+0x7dfe8)[0x7f898c99afe8]
/lib64/libc.so.6(realloc+0xe5)[0x7f898c99cb35]
ettercap[0x4228db]
ettercap[0x422e79]
/lib64/libpthread.so.0(+0x7d14)[0x7f898d7a9d14]
/lib64/libc.so.6(clone+0x6d)[0x7f898ca0e67d]
======= Memory map: ========
00400000-00475000 r-xp 00000000 08:04 279114                             /usr/bin/ettercap
00674000-00679000 rw-p 00074000 08:04 279114                             /usr/bin/ettercap
00679000-00685000 rw-p 00000000 00:00 0 
011e7000-01448000 rw-p 00000000 00:00 0                                  [heap]
7f896c000000-7f896c021000 rw-p 00000000 00:00 0 
7f896c021000-7f8970000000 ---p 00000000 00:00 0 
7f89737ff000-7f8973800000 ---p 00000000 00:00 0 
7f8973800000-7f8974000000 rw-p 00000000 00:00 0 
7f8974000000-7f8974021000 rw-p 00000000 00:00 0 
7f8974021000-7f8978000000 ---p 00000000 00:00 0 
7f8978000000-7f8978021000 rw-p 00000000 00:00 0 
7f8978021000-7f897c000000 ---p 00000000 00:00 0 
7f897c000000-7f897c021000 rw-p 00000000 00:00 0 
7f897c021000-7f8980000000 ---p 00000000 00:00 0 
7f8980204000-7f8980205000 ---p 00000000 00:00 0 
7f8980205000-7f8980a05000 rw-p 00000000 00:00 0                          [stack:21108]
7f8980a05000-7f8980a06000 ---p 00000000 00:00 0 
7f8980a06000-7f8981206000 rw-p 00000000 00:00 0                          [stack:21107]
7f8981206000-7f8981207000 ---p 00000000 00:00 0 
7f8981207000-7f8981a07000 rw-p 00000000 00:00 0                          [stack:21106]
7f8981a07000-7f8981a08000 ---p 00000000 00:00 0 
7f8981a08000-7f8982208000 rw-p 00000000 00:00 0                          [stack:21105]
7f8982208000-7f8982209000 ---p 00000000 00:00 0 
7f8982209000-7f8982a09000 rw-p 00000000 00:00 0                          [stack:21104]
7f8982a09000-7f8982a0a000 ---p 00000000 00:00 0 
7f8982a0a000-7f898320a000 rw-p 00000000 00:00 0                          [stack:21103]
7f898320a000-7f898320b000 ---p 00000000 00:00 0 
7f898320b000-7f8983a0b000 rw-p 00000000 00:00 0                          [stack:21102]
7f8983a0b000-7f8983a0c000 ---p 00000000 00:00 0 
7f8983a0c000-7f898420c000 rw-p 00000000 00:00 0                          [stack:21087]
7f898420c000-7f898420e000 r-xp 00000000 08:04 403665                     /usr/lib64/gconv/ISO8859-1.so
7f898420e000-7f898440d000 ---p 00002000 08:04 403665                     /usr/lib64/gconv/ISO8859-1.so
7f898440d000-7f898440e000 r--p 00001000 08:04 403665                     /usr/lib64/gconv/ISO8859-1.so
7f898440e000-7f898440f000 rw-p 00002000 08:04 403665                     /usr/lib64/gconv/ISO8859-1.so
7f898440f000-7f8984416000 r--s 00000000 08:04 403934                     /usr/lib64/gconv/gconv-modules.cache
7f8984416000-7f8984418000 r-xp 00000000 08:04 1057864                    /usr/lib64/ettercap/ec_arp_cop.so
7f8984418000-7f8984617000 ---p 00002000 08:04 1057864                    /usr/lib64/ettercap/ec_arp_cop.so
7f8984617000-7f8984618000 rw-p 00001000 08:04 1057864                    /usr/lib64/ettercap/ec_arp_cop.so
7f8984618000-7f898461a000 r-xp 00000000 08:04 1057865                    /usr/lib64/ettercap/ec_autoadd.so
7f898461a000-7f8984819000 ---p 00002000 08:04 1057865                    /usr/lib64/ettercap/ec_autoadd.so
7f8984819000-7f898481a000 rw-p 00001000 08:04 1057865                    /usr/lib64/ettercap/ec_autoadd.so
7f898481a000-7f898481c000 r-xp 00000000 08:04 1057866                    /usr/lib64/ettercap/ec_chk_poison.so
7f898481c000-7f8984a1b000 ---p 00002000 08:04 1057866                    /usr/lib64/ettercap/ec_chk_poison.so
7f8984a1b000-7f8984a1c000 rw-p 00001000 08:04 1057866                    /usr/lib64/ettercap/ec_chk_poison.so
7f8984a1c000-7f8984a1e000 r-xp 00000000 08:04 1057867                    /usr/lib64/ettercap/ec_dns_spoof.so
7f8984a1e000-7f8984c1e000 ---p 00002000 08:04 1057867                    /usr/lib64/ettercap/ec_dns_spoof.so
7f8984c1e000-7f8984c1f000 rw-p 00002000 08:04 1057867                    /usr/lib64/ettercap/ec_dns_spoof.so
7f8984c1f000-7f8984c21000 r-xp 00000000 08:04 1057868                    /usr/lib64/ettercap/ec_dos_attack.so
7f8984c21000-7f8984e20000 ---p 00002000 08:04 1057868                    /usr/lib64/ettercap/ec_dos_attack.so
7f8984e20000-7f8984e21000 rw-p 00001000 08:04 1057868                    /usr/lib64/ettercap/ec_dos_attack.so
7f8984e21000-7f8984e22000 r-xp 00000000 08:04 1057869                    /usr/lib64/ettercap/ec_dummy.so
7f8984e22000-7f8985021000 ---p 00001000 08:04 1057869                    /usr/lib64/ettercap/ec_dummy.so
7f8985021000-7f8985022000 rw-p 00000000 08:04 1057869                    /usr/lib64/ettercap/ec_dummy.so
7f8985022000-7f8985023000 r-xp 00000000 08:04 1057870                    /usr/lib64/ettercap/ec_find_conn.so
7f8985023000-7f8985222000 ---p 00001000 08:04 1057870                    /usr/lib64/ettercap/ec_find_conn.so
7f8985222000-7f8985223000 rw-p 00000000 08:04 1057870                    /usr/lib64/ettercap/ec_find_conn.so
7f8985223000-7f8985224000 r-xp 00000000 08:04 1057871                    /usr/lib64/ettercap/ec_find_ettercap.so
7f8985224000-7f8985424000 ---p 00001000 08:04 1057871                    /usr/lib64/ettercap/ec_find_ettercap.so
7f8985424000-7f8985425000 rw-p 00001000 08:04 1057871                    /usr/lib64/ettercap/ec_find_ettercap.so
7f8985425000-7f8985426000 r-xp 00000000 08:04 1057872                    /usr/lib64/ettercap/ec_find_ip.so
Abortado
===============================================================

Comment 1 Gwyn Ciesla 2012-10-02 00:40:24 UTC

Can you attach a full backtrace after installing ettercap-debuginfo?

Comment 2 Emilio A. Escobar 2012-10-18 01:00:56 UTC

Hello from the Ettercap development team! Have you tried recently? We pushed some changes to master after this bug was reported. I have tried to reproduce this (granted not on Fedora 17) without success. Also, if you could follow Jon Cleasia's recommendation that would be nice. A full stack trace sure would be helpful.

Any way we can get bugs reported here submitted to our issues page?

Comment 3 Emilio A. Escobar 2012-10-18 14:51:33 UTC

Additionally, where is Fedora getting ettercap from? if it's from the drizzt's repository, that is old code. YOu should be getting the code from the real distribution, hosted at https://github.com/Ettercap/ettercap.

Comment 4 Gwyn Ciesla 2012-10-18 14:57:23 UTC

That's a git clone from 2012-09-06 from Sourceforge.  I didn't know about anything at github.  I see there's also a 0.7.5 there, will that be released on Sourceforge as well, or will Sourceforge be updated to refer people to github?

Comment 5 Emilio A. Escobar 2012-10-18 15:00:04 UTC

I've uploaded the tar.gz to sourceforge. But I will update the main page to redirect users to GitHub. The source code is no longer being hosted at SourceForge so the only thing it'll have are tarballs when we release new versions.

Thanks!

Comment 6 Gwyn Ciesla 2012-10-18 15:05:08 UTC

Thanks, I'll get this into rawhide. . .

Comment 7 xset1980 2012-12-23 06:28:38 UTC

@Jon Ciesla,

Sorry for the delay, tomorrow i attach a full backtrace installing ettercap-debuginfo.
What is the command for a full backtrace? (sorry i'm no know how).

Ettercap 0.7.4-3 on CentOS 6.3, work perfectly, so, is possible a enviroment problem?, like ncurses etc?, because additionally to the crash and segfault, the ncurses GUI crash ever, bug present since F15, reported and never fixed.

ref1 (closed by Ciesla for duplicated): https://bugzilla.redhat.com/show_bug.cgi?id=710685
ref2 (original no duplicated): https://bugzilla.redhat.com/show_bug.cgi?id=659903
ref3 (Actually the ncurses bug is present, not crash ever, but ncurses yes, see the image): https://bugzilla.redhat.com/attachment.cgi?id=502940

Ettercap on F17 KDE, now, no crash always, but ncurses gui yes, reported since F15 and marked as fixed, but not fixed really.

The strange is that on CentOS 6.3, works fine, all, on F15-16-17, the bug of ncurses is present.

Comment 8 Emilio A. Escobar 2012-12-23 22:01:29 UTC

We have tried to reproduce this issue in other distros and have not succeeded at all. We have noticed the curses interface display those weird characters and are still looking into it. It might be something that was changed in the curses library that is affecting Ettercap.

Comment 9 xset1980 2013-01-17 01:10:26 UTC

@Jon Ciesla,

The bug of the crashed ncurses still persistent. In Fedora 18 KDE final release, no bug, no ncurses bug or other bug. So, maybe comparing the packages involved with ettercap you can fix it.

Comment 10 Gwyn Ciesla 2013-01-18 19:43:19 UTC

*** Bug 896307 has been marked as a duplicate of this bug. ***

Comment 11 Gwyn Ciesla 2013-01-18 19:44:30 UTC

Basically, make sure ettercap-debuginfo is installed, then:

gdb ettercap -C
run

and after it crashes:

bt all

and paste that output here.

Comment 12 Gianfranco 2013-01-20 23:11:07 UTC

I think I fixed this long bug with this commit
https://github.com/LocutusOfBorg/ettercap/commit/c122484b3ef74d95ee8ba6a78ecedfc5487934c7

We will ship this and other crash fix (e.g. crash in ppp0 interfaces, CVE) in the next 0.7.5.2 release

Comment 13 xset1980 2013-01-21 01:00:54 UTC

Created attachment 683991 [details]
screenshot of the crash of ettercap on F17 after 3 times ctrl+s

Comment 14 Gianfranco 2013-01-21 07:50:57 UTC

Please don't add anything new in this bug mail!

I should have fixed this bug, so please don't post anthing new until a developer posts a fix in fedora package

Comment 15 Gwyn Ciesla 2013-01-23 15:16:05 UTC


*** This bug has been marked as a duplicate of bug 860520 ***

Comment 16 Emilio A. Escobar 2013-01-23 15:32:40 UTC

Latest push to master includes fix applied by Gianfranco. Maintainer, please pull latest.

Note You need to log in before you can comment on or make changes to this bug.