[tor-bugs] #8179 [Tor]: openssl 1.0.1d seems to break SSL Handshakes/Renegotiations

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed Feb 6 22:41:41 UTC 2013


#8179: openssl 1.0.1d seems to break SSL Handshakes/Renegotiations
-----------------------+----------------------------------------------------
 Reporter:  ruebezahl  |          Owner:                     
     Type:  defect     |         Status:  new                
 Priority:  normal     |      Milestone:                     
Component:  Tor        |        Version:  Tor: 0.2.4.10-alpha
 Keywords:  openssl    |         Parent:                     
   Points:             |   Actualpoints:                     
-----------------------+----------------------------------------------------

Comment(by nickm):

 I've attached a patch that instruments tor_tls_read to dump the buffers
 returned by SSL_read.  Check this out:
 {{{
 Feb 06 17:37:37.000 [notice] Read 1/16384: 05
 Feb 06 17:37:37.000 [notice] Read 1479/16384:
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
 D06092A864886F70D0101050500302431223020060355040313197777772E677A766169796C6D34356B6273627370752E636F6D301E170D3133303230363232333231315A170D3134303230363232333231315A302431223020060355040313197777772E677A766169796C6D34356B6273627370752E636F6D30819F300D06092A864886F70D010101050003818D0030818902818100C8CF869D1000DF1641E3FCB0383E9A733B8673C4C5C5D339FB26B7B4A5DA4DDF1DC1DE0099D8BB5D15FE16FA44186E6E2D47460E9F605E4FC1958EA69C518FDD165F79F624471087CF3EE2DB90350DA33B15D0FE1064C9FD30925AF1E8587C6A76B5557F905C89DF456E73DDE680357AAF742BC31B98DF52BCFAA63F1618FAF10203010001300D06092A864886F70D0101050500038181007F82439B33424FB325B4436B12FCB7BC1C1EBDC679A048414888260F5E64008C7F78DE48BF366EEECC6B4A4B33EECCCD94203687EAA6002B8939D1A189DFF5935699E47B479462B311B7DCDE100F0D1B79EA578A88E004C3BEA2AB8C86B07EF473246515495BAD0475380AF1E535D3F219D33CAE6A4249FC228FD3B19EC8FF7A00008200248CC93EEF558A84E1D4B763DED473FE693BE09485EA03A6C0594D1CB599D54A4F000100010000085112DB3104046C07E048010404D470F5AA000000
 00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000015
 Feb 06 17:37:37.000 [info] channel_tls_handle_cell(): Received unexpected
 cell command 0 in chan state opening / conn state handshaking (Tor, v3
 handshake); closing the connection.
 }}}

 It looks like there's an extraneous byte coming out of the first SSL_read
 there -- the next bytes are a perfectly good VERSIONS cell, followed by
 what seems to be at least the start of a good CERTS cell.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8179#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list