[openssl-dev] [openssl.org #3592] bug report. Crash. Critical? Security bug?

Вячеслав Бадалян via RT rt at openssl.org
Wed Dec 10 07:59:35 UTC 2014 

Get again ASSERT in d1_both.c:1244

                OPENSSL_assert(s->d1->w_msg_hdr.msg_len +

 ((s->version==DTLS1_VERSION)?DTLS1_CCS_HEADER_LENGTH:3) == (unsigned
int)s->init_num);
                }





2014-12-10 6:32 GMT+03:00 Вячеслав Бадалян <v.badalyan at open-bs.ru>:

> Hello. I begin test you patch. I attach to mail patched version of you
> patch wthat may clear added current SRPM of Centos 6
>
> 2014-12-03 5:16 GMT+03:00 Вячеслав Бадалян <v.badalyan at open-bs.ru>:
>
>> Thanks! I need time to test it... i will try answer at this week
>>
>> 2014-12-02 19:37 GMT+03:00 Matt Caswell via RT <rt at openssl.org>:
>>
>>> On Tue Dec 02 17:31:05 2014, v.badalyan at open-bs.ru wrote:
>>> > if you send patch i can add it to SRPM build and try results
>>> >
>>> The patch is attached. However you may have problems with this approach.
>>> I have
>>> built the patch for 1.0.1e (which is the version you originally said you
>>> were
>>> running). However any additional patches that have been applied to the
>>> SRPM
>>> could cause the patch to fail to apply (and it is quite a large patch).
>>> I can
>>> also supply a patch against the latest 1.0.1j or OpenSSL_1_0_1-stable
>>> from git
>>> if you prefer.
>>>
>>> Matt
>>>
>>>
>>
>>
>> --
>> С уважением,
>> Бадалян Вячеслав Борисович
>>
>> ООО "Открытые бизнес-решения"
>> Технический директор
>> +7 (495) 666-0-111
>> http://www.open-bs.ru
>>
>
>
>
> --
> С уважением,
> Бадалян Вячеслав Борисович
>
> ООО "Открытые бизнес-решения"
> Технический директор
> +7 (495) 666-0-111
> http://www.open-bs.ru
>



-- 
С уважением,
Бадалян Вячеслав Борисович

ООО "Открытые бизнес-решения"
Технический директор
+7 (495) 666-0-111
http://www.open-bs.ru

-------------- next part --------------
#0  0x00000037c9e32625 in raise (sig=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
        resultvar = 0
        pid = <value optimized out>
        selftid = 19173
#1  0x00000037c9e33e05 in abort () at abort.c:92
        save_stage = 2
        act = {__sigaction_handler = {sa_handler = 0x8f91b0 <stderr@@GLIBC_2.2.5>, sa_sigaction = 0x8f91b0 <stderr@@GLIBC_2.2.5>}, sa_mask = {__val = {140737349776136, 140735810636400, 140735676423408, 0, 0, 239610129240,
              140737351974912, 140734669926416, 4294967295, 206158430240, 5, 4001896, 0, 8512, 3, 140737345359872}}, sa_flags = -912203712, sa_restorer = 0x7fff00000005}
        sigs = {__val = {32, 0 <repeats 15 times>}}
#2  0x00007ffff780ae3f in OpenSSLDie (file=<value optimized out>, line=<value optimized out>, assertion=<value optimized out>) at cryptlib.c:923
No locals.
#3  0x00007ffff7bc165e in dtls1_buffer_message (s=0x7fff58023010, is_ccs=0) at d1_both.c:1244
        item = <value optimized out>
        frag = 0x7fff94001cf0
        seq64be = "\020\060\002X\377\177\000"
#4  0x00007ffff7bb9fd0 in dtls1_send_server_certificate (s=0x7fff58023010) at d1_srvr.c:1602
        l = <value optimized out>
        x = <value optimized out>
#5  0x00007ffff7bbbdf7 in dtls1_accept (s=0x7fff58023010) at d1_srvr.c:426
        buf = <value optimized out>
        Time = 1418197945
        cb = 0
        alg_k = <value optimized out>
        ret = <value optimized out>
        new_state = <value optimized out>
        state = 8512
        skip = 0
        listen = 0
#6  0x00007fff9e282999 in dtls_perform_handshake (instance=0x7fff58014dd8, dtls=0x7fff5800fbb0, rtcp=0) at res_rtp_asterisk.c:1584
        rtp = 0x7fff5800ce10
#7  0x00007fff9e282a8a in ast_rtp_on_ice_complete (ice=0x7fff5801db58, status=0) at res_rtp_asterisk.c:1610
        instance = 0x7fff58014dd8
        rtp = 0x7fff5800ce10
#8  0x00007fff9e294dad in on_timer () from /usr/lib/asterisk/modules/res_rtp_asterisk.so
No symbol table info available.
#9  0x00007fff9e2c3b6e in pj_timer_heap_poll () from /usr/lib/asterisk/modules/res_rtp_asterisk.so
No symbol table info available.
#10 0x00007fff9e282d59 in timer_worker_thread (data=0x0) at res_rtp_asterisk.c:1696
        delay = {sec = 0, msec = 10}
        ioqueue = 0x7fff940008e8
#11 0x00007fff9e2b509b in thread_main () from /usr/lib/asterisk/modules/res_rtp_asterisk.so
No symbol table info available.
#12 0x00000037ca2079d1 in start_thread (arg=0x7fff9c001700) at pthread_create.c:301
        __res = <value optimized out>
        pd = 0x7fff9c001700
        now = <value optimized out>
        unwind_buf = {cancel_jmp_buf = {{jmp_buf = {140735810639616, 179920719414352890, 140737488340608, 140735810640320, 0, 3, -180129756062360582, 148795465936985082}, mask_was_saved = 0}}, priv = {pad = {0x0, 0x0, 0x0, 0x0},
            data = {prev = 0x0, cleanup = 0x0, canceltype = 0}}}
        not_first_call = <value optimized out>
        pagesize_m1 = <value optimized out>
        sp = <value optimized out>
        freesize = <value optimized out>
#13 0x00000037c9ee89dd in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

More information about the openssl-dev mailing list