On Apr 24, 2013, at 12:01 AM, Artur Morandi <artur.morandi@gmail.com> wrote:

I've installed fwknopf on Kali Linux, based on debian, and I can configure and start the daemon perfectly, no errors are given. When I try to send the SPA packet (I'm usign webknock.org), there's a segmentation fault on libc-2.13.

Interesting, I'm going to install Kali Linux on a VM to try and reproduce the problem.

The syslog message is as follows:

"Apr 24 00:44:46 kali fwknopd[5230]: Starting fwknopd
Apr 24 00:44:46 kali fwknopd[5230]: 'filter' table 'FWKNOP_INPUT' chain exists
Apr 24 00:44:46 kali fwknopd[5230]: Added jump rule from chain: INPUT to chain: FWKNOP_INPUT
Apr 24 00:44:46 kali fwknopd[5230]: Sniffing interface: wlan0
Apr 24 00:44:46 kali fwknopd[5230]: PCAP filter is: 'udp port 8022'
Apr 24 00:44:46 kali fwknopd[5230]: Starting fwknopd main event loop.
Apr 24 00:47:17 kali fwknopd[5230]: (stanza #1) SPA Packet from IP: received with ac
cess source match
Apr 24 00:47:17 kali kernel: [  858.652511] fwknopd[5230]: segfault at 0 ip 00007f19f472b86f sp 00007fff4e080598 error 4 in libc-2.13.so[7f19f4612000+180000]"

This indicates that fwknopd decrypted the incoming SPA packet and is trying to parse the data it contains (access request, etc.).

Which information is needed to troubleshoot this error? I have reinstalled libc several times, libnet-pcap also, but keep getting the same error. My OS is: "Linux kali 3.7-trunk-amd64 #1 SMP Debian 3.7.2-0+kali6 x86_64 GNU/Linux"

I've tried compiling it from source, but errors are the same.
My package versions are:
libc6/kali uptodate 2.13-38
libnet-pcap-perl/kali uptodate 0.16-3+b1
fwknopd server 2.0.3

Any chance you could try compiling fwknop 2.0.4 instead of 2.0.3?  Also, it would be interesting to see what the test suite is able to turn up.  Just go to the test/ directory in the fwknop sources and then run:

# ./test-fwknop.pl --enable-all



thank you!
