search

logpresso / CVE-2021-44228-Scanner

Vulnerability scanner and mitigation patch for Log4j2 CVE-2021-44228
Apache License 2.0
850 stars 174 forks source link

coredump file on linuxRHEL 7.4 #224

Open kisnalam opened 2 years ago

kisnalam commented 2 years ago

Error code 255 and ~1GB coredump file getting generated. Any known issue or what does return code 255 mean ? How to analyse the coredump file.

Completed in 47.63 secondsError: Java heap space java.lang.OutOfMemoryError: Java heap space at java.io.File.list(File.java:1133) at java.io.File.listFiles(File.java:1218) at com.logpresso.scanner.Log4j2Scanner.traverse(Log4j2Scanner.java:496) at com.logpresso.scanner.Log4j2Scanner.traverse(Log4j2Scanner.java:501) at com.logpresso.scanner.Log4j2Scanner.traverse(Log4j2Scanner.java:501) at com.logpresso.scanner.Log4j2Scanner.traverse(Log4j2Scanner.java:501) at com.logpresso.scanner.Log4j2Scanner.traverse(Log4j2Scanner.java:501) at com.logpresso.scanner.Log4j2Scanner.traverse(Log4j2Scanner.java:501) at com.logpresso.scanner.Log4j2Scanner.traverse(Log4j2Scanner.java:501) at com.logpresso.scanner.Log4j2Scanner.traverse(Log4j2Scanner.java:501) at com.logpresso.scanner.Log4j2Scanner.traverse(Log4j2Scanner.java:501) at com.logpresso.scanner.Log4j2Scanner.scanAndFix(Log4j2Scanner.java:233) at com.logpresso.scanner.Log4j2Scanner.run(Log4j2Scanner.java:83) at com.logpresso.scanner.Log4j2Scanner.main(Log4j2Scanner.java:40)

kisnalam commented 2 years ago

And another error on AIX

Exception in thread "main" java.lang.UnsupportedClassVersionError: JVMCFRE003 bad major version; class=com/logpresso/scanner/Log4j2Scanner, offset=6 at java.lang.ClassLoader.defineClassImpl(Native Method) at java.lang.ClassLoader.defineClass(ClassLoader.java:324) at java.security.SecureClassLoader.defineClass(SecureClassLoader.java:155) at java.net.URLClassLoader.defineClass(URLClassLoader.java:715) at java.net.URLClassLoader.access$400(URLClassLoader.java:94) at java.net.URLClassLoader$ClassFinder.run(URLClassLoader.java:1169) at java.security.AccessController.doPrivileged(AccessController.java:492) at java.net.URLClassLoader.findClass(URLClassLoader.java:598) at java.lang.ClassLoader.loadClassHelper(ClassLoader.java:777) at java.lang.ClassLoader.loadClass(ClassLoader.java:750) at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:341) at java.lang.ClassLoader.loadClass(ClassLoader.java:731) at sun.launcher.LauncherHelper.checkAndLoadMain(LauncherHelper.java:495)

xeraph commented 2 years ago

@kisnalam

  1. Which scanner version do you use? line number does not match.
  2. How many files in your directory? Find last visit directory using --trace option. If there are too many files in one directory, java heap can be exhausted. If you have sufficient free memory, use -Xmx4G switch to allocate 4GB at maximum.
  3. Which java version do you use on AIX? java -version
xeraph commented 2 years ago

Also see https://github.com/logpresso/CVE-2021-44228-Scanner/issues/123#issuecomment-996777425 It may help if you have millions of files in a directory.

xeraph commented 2 years ago

@kisnalam OutOfMemoryError issue is resolved in v2.9.0. Would you test it? https://github.com/logpresso/CVE-2021-44228-Scanner/releases/tag/v2.9.0