ssldump segfault
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| ssldump (Ubuntu) |
New
|
Undecided
|
Unassigned | ||
Bug Description
Binary package hint: ssldump
ssldump will often segfault while interpreting valid ssl data captured from the network.
Here are reproduction instructions for one such crash.
The attached server.pem contains a private key and self-signed certificate.
The attached echoserv_ssl.py is a Python program (requires Twisted - should be fine with 8.2) which runs an SSL server.
The attached netkit-
Put server.pem and echoserv_ssl.py in the same directory and run echoserv_ssl.py. It will bind to port 8000. Patch netkit-telnet-ssl and build it. Use the resulting telnet executable to run this command from the directory containing server.pem:
telnet -z ssl,cert=
The connection will not manage to get set up completely (I haven't debugged that yet). If you do this while ssldump is running (eg ssldump -i lo), ssldump will segfault after reporting some text.
Also attached is the output I see from the telnet command, from ssldump, and a tcpdump capture of the traffic which happens on my system during this interaction.
| Jean-Paul Calderone (exarkun) wrote | #1 |
| Jean-Paul Calderone (exarkun) wrote | #2 |
| Jean-Paul Calderone (exarkun) wrote | #3 |
| Jean-Paul Calderone (exarkun) wrote | #4 |
| Jean-Paul Calderone (exarkun) wrote | #5 |
| Jean-Paul Calderone (exarkun) wrote | #6 |
| Jean-Paul Calderone (exarkun) wrote | #7 |
Also,
ssldump:
Installed: 0.9b3-2.2
Candidate: 0.9b3-2.2
This is all on Hardy.