[tor-bugs] #13471 [Tor]: router daemon crashes with openssl built no_ssl3
Tor Bug Tracker & Wiki
blackhole at torproject.org
Sun Oct 19 16:13:32 UTC 2014
#13471: router daemon crashes with openssl built no_ssl3
-------------------------+-------------------------------------------------
Reporter: | Owner:
starlight | Status: new
Type: defect | Milestone: Tor: 0.2.6.x-final
Priority: major | Version: Tor: 0.2.4.24
Component: Tor | Keywords: tor-relay ssl3 poodle 025-backport
Resolution: | 024-backport 023-backport
Actual Points: | Parent ID:
Points: |
-------------------------+-------------------------------------------------
Comment (by starlight):
I believe the stack trace is good. Have three
examples that agree, this one with -O2 and
two with -O1 -fsanitize-address.
The macro used in the call is
tls1.h:304
{{{
#define SSL_set_tlsext_host_name(s,name) \
SSL_ctrl(s,SSL_CTRL_SET_TLSEXT_HOSTNAME,TLSEXT_NAMETYPE_host_name,(char
*)name)
}}}
where SSL_CTRL_SET_TLSEXT_HOSTNAME is 55 per ssl/ssl.h:1583
and the chosen switch/case of default: matches the
indicated code.
I'm not setup to debug the tor daemon and it would
take a day. Sorry don't have time right now, but
this should be trivial to reproduce in an existing
debug environment.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/13471#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list