search

hugsy / gef

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux
https://hugsy.github.io/gef
MIT License
6.65k stars 717 forks source link

Possible GEF `dereference` issue with `gef-remote` #1080

Open hyjun0407 opened 3 months ago

hyjun0407 commented 3 months ago

GEF+GDB version

GEF: (Standalone)
Blob Hash(/root/.gef-5927df4fb307124c444453b1cb85fa0ce79883c9.py): 5c187451f07ba303cd4bbb4973f5a6d9735b3e5c
SHA256(/root/.gef-5927df4fb307124c444453b1cb85fa0ce79883c9.py): baf1f0908e9513129661ccc6e39fbd31b42837cd9ab6362b00eda4991e09e7e2
GDB: 12.1
GDB-Python: 3.10

Operating System

WSL No LSB modules are available. Distributor ID: Ubuntu Description: Ubuntu 22.04.4 LTS Release: 22.04 Codename: jammy

Describe the issue you encountered

gW7o6wM qemu-aarch64-static -g 1234 ./prob When I run the command with and proceed to gef-remote localhost 1234 with gdb-multiarch, Stack View is not available as above. when i enter 'tele', it said [!] Unmapped address: '$sp' .

Do you read the docs and look at previously closed issues/PRs for similar cases?

No

Architecture impacted

Describe your issue. Without a proper reproduction step-by-step, your issue will be ignored.

qemu-aarch64-static -g 1234 ./prob When I run the command with and proceed to gef-remote localhost 1234 with gdb-multiarch, Stack View is not available as above. when i enter 'tele', it said [!] Unmapped address: '$sp' .

Minimalist test case

Use this field for a minimal code to compile and spot the issue:

// compile with gcc -fPIE -pic -o my_issue.out my_issue.c
int main(){ return 0; }

You can also provide a Dockerfile if you prefer

Additional context?

hugsy commented 2 months ago

Hi @hyjun0407

Try using the latest version of GEF from main and use the correct syntax from the docs.

joaoviictorti commented 2 months ago

Hi guys, I'm facing this same problem on ubuntu, and I don't understand why. I used kali linux and it was possible to see the stack view, but for some reason in ubuntu it is not possible to do this.

hugsy commented 1 month ago

Marked as stale as this needs more info. I cannot reproduce, if anyone can, update this issue with a full step by step.