[tor-bugs] #13471 [Tor]: router daemon crashes with openssl built no_ssl3
Tor Bug Tracker & Wiki
blackhole at torproject.org
Sun Oct 19 19:39:46 UTC 2014
#13471: router daemon crashes with openssl built no_ssl3
-------------------------+-------------------------------------------------
Reporter: | Owner:
starlight | Status: new
Type: defect | Milestone: Tor: 0.2.6.x-final
Priority: blocker | Version: Tor: 0.2.4.24
Component: Tor | Keywords: tor-relay ssl3 poodle 025-backport
Resolution: | 024-backport 023-backport
Actual Points: | Parent ID:
Points: |
-------------------------+-------------------------------------------------
Comment (by starlight):
The patch worked.
some points of interest
==================
Actual patch is
https://gitweb.torproject.org/tor.git/commitdiff_plain/c1c83eb376a7c89fadb01d1c7082d4aa4125333d?hp=0eec8e2aa51f779e458fb3831b0ed8ae1db896ec
and it it applies with some "fuzz" warnings so
perhaps should be adapted for the 0.2.4.24 branch
{{{
openssl s_client -ssl3 -connect x.x.x.x:x # CentOS
openssl-0.9.8e-27.el5_10.4
}}}
returns
{{{
CONNECTED(00000003)
11175:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake
failure:s3_pkt.c:1092:SSL alert number 40
11175:error:1409E0E5:SSL routines:SSL3_WRITE_BYTES:ssl handshake
failure:s3_pkt.c:536:
}}}
but
{{{
openssl s_client -ssl2 -connect x.x.x.x:x
}}}
returns
{{{
CONNECTED(00000003)
write:errno=104
}}}
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/13471#comment:15>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list