rc.25 software available for comment

carter at qosient.com carter at qosient.com
Fri Aug 11 10:17:32 EDT 2006 

Hey Robin,
I fixed the compile problem, and replaced the argus tarfile, so the current rc.25 should be usable.  The pgp *.asc file is not current though, but the *.md5 file is up to date.

Carter
Carter Bullard
QoSient LLC
150 E. 57th Street Suite 12D
New York, New York 10022
+1 212 588-9133 Phone
+1 212 588-9134 Fax  

-----Original Message-----
From: carter at qosient.com
Date: Fri, 11 Aug 2006 13:28:59 
To:"Robin Gruyters" <r.gruyters at yirdis.nl>
Cc:Argus <argus-info at lists.andrew.cmu.edu>
Subject: Re: [ARGUS] rc.25 software available for comment

Hmmmm, something really screwy is going on.  I'll try to fix this today, if I can find a terminal.   There is a patch for this problem on the mailing list ( just change "src_pkt_drop" to "sdrop" and change "dst_pkt_drop" to "ddrop" where it is complaining ).  The corrected version must not have made it into the repository?

Carter

Carter Bullard
QoSient LLC
150 E. 57th Street Suite 12D
New York, New York 10022
+1 212 588-9133 Phone
+1 212 588-9134 Fax  

-----Original Message-----
From: Robin Gruyters <r.gruyters at yirdis.nl>
Date: Fri, 11 Aug 2006 13:44:46 
To:Carter Bullard <carter at qosient.com>
Cc:Argus <argus-info at lists.andrew.cmu.edu>
Subject: Re: [ARGUS] rc.25 software available for comment

I meant rc25, not rc5.

Regards,

Robin Gruyters
Network and Security Engineer
Yirdis B.V.
I: http://yirdis.com
P: +31 (0)36 5300394
F: +31 (0)36 5489119


Quoting Robin Gruyters <r.gruyters at yirdis.nl>:

> Hello Carter,
>
> Still some problem when trying to compile argus-3.0.0.rc5:
>
> [...]
> gcc -O3 -I. -I/usr/include  -I./../include -DPACKAGE_NAME=\"\"
> -DPACKAGE_TARNAME=\"\" -DPACKAGE_VERSION=\"\" -DPACKAGE_STRING=\"\"
> -DPACKAGE_BUGREPORT=\"\" -DHAVE_VFPRINTF=1 -DHAVE_STRCASECMP=1
> -DHAVE_STRLCAT=1 -DHAVE_STRLCPY=1 -DHAVE_STRDUP=1 -DHAVE_STRFTIME=1
> -DHAVE_SETLINEBUF=1 -DHAVE_ALARM=1 -DSTDC_HEADERS=1
> -DHAVE_SYS_TYPES_H=1 -DHAVE_SYS_STAT_H=1 -DHAVE_STDLIB_H=1
> -DHAVE_STRING_H=1 -DHAVE_MEMORY_H=1 -DHAVE_STRINGS_H=1
> -DHAVE_INTTYPES_H=1 -DHAVE_STDINT_H=1 -DHAVE_UNISTD_H=1
> -DHAVE_INTTYPES_H=1 -DHAVE_VSNPRINTF=1 -DHAVE_SNPRINTF=1
> -DHAVE_ETHER_HOSTTON=1 -DHAVE_STRUCT_ETHER_ADDR=1
> -DHAVE_DECL_ETHER_HOSTTON=0 -DHAVE_TCP_WRAPPER=1 -DHAVE_SYS_SOCKIO_H=1
> -DHAVE_STRING_H=1 -DHAVE_FCNTL_H=1 -DHAVE_SYS_FILE_H=1
> -DHAVE_SYSLOG_H=1 -DCONFIG_X86_BSWAP=1 -DSTDC_HEADERS=1
> -DARGUS_SYSLOG=1 -c argus_util.c
> argus_util.c: In function `ArgusNtoH':
> argus_util.c:498: error: structure has no member named `src_pkt_drop'
> argus_util.c:498: error: structure has no member named `src_pkt_drop'
> argus_util.c:499: error: structure has no member named `dst_pkt_drop'
> argus_util.c:499: error: structure has no member named `dst_pkt_drop'
> argus_util.c: In function `ArgusHtoN':
> argus_util.c:904: error: structure has no member named `src_pkt_drop'
> argus_util.c:904: error: structure has no member named `src_pkt_drop'
> argus_util.c:905: error: structure has no member named `dst_pkt_drop'
> argus_util.c:905: error: structure has no member named `dst_pkt_drop'
> *** Error code 1
>
> [...]
>
> Regards,
>
> Robin Gruyters
> Network and Security Engineer
> Yirdis B.V.
> I: http://yirdis.com
> P: +31 (0)36 5300394
> F: +31 (0)36 5489119
>
>
> Quoting Carter Bullard <carter at qosient.com>:
>
>> Hey Cedric,
>>    Ahhhhhh, that will do it, and thanks!!!!  The rc.25 code has this
>> fix in, so let see if that doesn't get us a little further.
>>
>> Carter
>>
>>
>> On Aug 11, 2006, at 5:49 AM, VIEAU Cédric 172196 wrote:
>>
>>> Hi,
>>>
>>> ra 3.0-rc.24 generates a segfault with some v2 records:
>>>
>>> ----------------------------------------
>>> Program received signal SIGSEGV, Segmentation fault.
>>> 0xb7e29bcd in bcopy () from /lib/tls/libc.so.6
>>> (gdb) bt
>>> #0  0xb7e29bcd in bcopy () from /lib/tls/libc.so.6
>>> #1  0x0807a570 in ArgusConvertRecord (input=0x81c77a8,      
>>> ptr=0xb7c6d124 "\001\004\210") at argus_util.c:13324
>>> #2  0x0808472e in ArgusReadStreamSocket (parser=0xb7d6c008,      
>>> input=0x81c77a8) at argus_client.c:300
>>> #3  0x08084a83 in ArgusReadFileStream (parser=0xb7d6c008) at      
>>> argus_client.c:388
>>> #4  0x0804b20e in main (argc=5, argv=0xbfe3c894) at argus_main.c:161
>>> (gdb) f 1
>>> #1  0x0807a570 in ArgusConvertRecord (input=0x81c77a8,      
>>> ptr=0xb7c6d124 "\001\004\210") at argus_util.c:13324
>>> 13324                              bcopy((char *) &ipattr->hdr,     
>>>  (char *) dsr, sizeof(*dsr));
>>> (gdb) l
>>> 13321                           if (ipattr != NULL) {
>>> 13322                              unsigned int *dsrptr =   
>>> (unsigned   int *)(dsr + 1);
>>> 13323
>>> 13324                              bcopy((char *) &ipattr->hdr,     
>>>  (char *) dsr, sizeof(*dsr));
>>> ----------------------------------------
>>>
>>> Variable ipattr should be initialized with NULL value (it was the   
>>>    case with the "previous rc.24 release"):
>>>
>>> ----------------------------------------
>>> --- common/argus_util.c.orig    2006-08-11 11:31:02.000000000 +0200
>>> +++ common/argus_util.c 2006-08-11 11:31:45.000000000 +0200
>>> @@ -13173,7 +13173,7 @@
>>>                     case ARGUS_V2_FAR_DSR_STATUS: {
>>>                        struct ArgusV2FarStruct  *far = (struct      
>>> ArgusV2FarStruct *)hdrs[ARGUS_V2_FAR_DSR_INDEX];
>>>                        struct ArgusTransportStruct *trans =      
>>> (struct ArgusTransportStruct *) dsr;
>>> -                        struct ArgusIPAttrStruct ipattrbuf, *ipattr;
>>> +                        struct ArgusIPAttrStruct ipattrbuf,      
>>> *ipattr = NULL;
>>>                        struct ArgusFlow *flow = NULL;
>>>                        struct ArgusTimeObject *dtime = NULL;
>>>                        struct ArgusMetricStruct *metric = NULL;
>>> ----------------------------------------
>>>
>>> Regards,
>>> Cédric
>>>

More information about the argus mailing list