[xmppd-dev] Segfault with invalid TLS configuration
Maurice van der Pot
griffon26 at kfk4ever.com
Sun Aug 10 00:20:01 CEST 2008
Hi,
Just wanted to let you know that if you configure jabberd for tls on port 5223:
<tls port='5223'>0.0.0.0</tls>
and you don't specify any credentials at all in the tls section:
<tls>
<!--
<credentials>
<default/>
<domain>localhost</domain>
<domain>transport.localhost</domain>
<pem>/etc/jabber/your-certificate.pem</pem>
<ca type='pem'>/etc/jabber/cacerts.pem</ca>
<compression>LZO DEFLATE NULL</compression>
</credentials>
-->
<dhparams type='pem'>/etc/jabber/dhparams.pem</dhparams>
<cacertfile>/etc/jabber/cacerts.pem</cacertfile>
</tls>
and then tell psi to connect with the following settings:
Encrypt connection: Always
Probe legacy SSL port: yes
Allow plaintext authentication: Over encrypted connection
then jabberd crashes because of a segfault as shown below.
I hope I have provided enough information for this report to be useful.
Regards,
Maurice.
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9CC3AB8 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9CC3D88 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9C20610 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9C0E0D8 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:1012 mio while loop top
Sun Aug 10 00:13:05 2008 mio.cc:1036 mio while loop, working
Sun Aug 10 00:13:05 2008 mio.cc:1043 got a notify on zzz
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9CB8298 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:343 write_dump writing data: <handshake/>
Sun Aug 10 00:13:05 2008 mio.cc:347 written 12 of 12 B on socket 20: <handshake/>
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9C75950 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9CC3AB8 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9CC3D88 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9C20610 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9C0E0D8 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:1012 mio while loop top
Sun Aug 10 00:13:05 2008 mio.cc:1036 mio while loop, working
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9CB8298 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9C75950 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9CC3AB8 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9CC3D88 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9C20610 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:460 _mio_accept calling accept on fd #13
Sun Aug 10 00:13:05 2008 mio.cc:476 _mio_accept(9C20610) accepted fd #21
Sun Aug 10 00:13:05 2008 mio.cc:512 new socket accepted (fd: 21, ip: 10.0.0.2, port: 55777)
Sun Aug 10 00:13:05 2008 mio.cc:1212 sending zzz notify to the select loop in mio_new()
Sun Aug 10 00:13:05 2008 mio.cc:1225 notify sent
Sun Aug 10 00:13:05 2008 log.cc:221 <log xmlns='jabber:server' type='alert' from='0.0.0.0'>Cannot start TLS layer for 0.0.0.0 - no credentials available, even no default ones</log>
Sun Aug 10 00:13:05 2008 deliver.cc:614 DELIVER 3:0.0.0.0 <log xmlns='jabber:server' type='alert' from='0.0.0.0'>Cannot start TLS layer for 0.0.0.0 - no credentials available, even no default ones</log>
Sun Aug 10 00:13:05 2008 deliver.cc:837 delivering to instance 'elogger.kfk4ever.com'
Sun Aug 10 00:13:05 2008 mio.cc:1258 sending zzz notify to the select loop in mio_close()
Sun Aug 10 00:13:05 2008 mio.cc:879 Accepted socket on MIO object 9CA5200, fd 21
Sun Aug 10 00:13:05 2008 mio.cc:291 Unlinking 9C20610 from master__list
Sun Aug 10 00:13:05 2008 mio.cc:425 freed MIO socket
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9C0E0D8 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:1012 mio while loop top
Sun Aug 10 00:13:05 2008 mio.cc:1036 mio while loop, working
Sun Aug 10 00:13:05 2008 mio.cc:1043 got a notify on zzz
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9CA5200 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9CB8298 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9C75950 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9CC3AB8 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9CC3D88 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9C0E0D8 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:1012 mio while loop top
Sun Aug 10 00:13:05 2008 mio.cc:1036 mio while loop, working
Sun Aug 10 00:13:05 2008 mio.cc:860 processing mio 9CA5200 (state 0)
Sun Aug 10 00:13:05 2008 mio.cc:965 Trying to read on socket 21
Sun Aug 10 00:13:05 2008 mio_tls.cc:1072 Trying to read up to 1000 B from socket 21 using GnuTLS
Program received signal SIGSEGV, Segmentation fault.
0xb7e7c3a3 in _gnutls_recv_int (session=0x0, type=GNUTLS_APPLICATION_DATA, htype=4294967295, data=0x9c68f8c "<handshake>c40163451a4c7a9d5c509a522ed30ea4137bf965</handshake>", sizeofdata=1000) at gnutls_record.c:870
870 gnutls_record.c: No such file or directory.
in gnutls_record.c
Current language: auto; currently c
(gdb) bt
#0 0xb7e7c3a3 in _gnutls_recv_int (session=0x0, type=GNUTLS_APPLICATION_DATA, htype=4294967295, data=0x9c68f8c "<handshake>c40163451a4c7a9d5c509a522ed30ea4137bf965</handshake>", sizeofdata=1000) at gnutls_record.c:870
#1 0xb7e7d2b5 in gnutls_record_recv (session=0x0, data=0x9c68f8c, sizeofdata=1000) at gnutls_record.c:1170
#2 0xb7f18b33 in _mio_ssl_read (m=0x9ca5200, buf=0x9c68f8c, count=1000) at mio_tls.cc:1079
#3 0xb7f162db in _mio_read_from_socket (m=0x9ca5200) at mio.cc:782
#4 0xb7f16f3e in _mio_main (arg=0x0) at mio.cc:966
#5 0xb7d78d93 in ?? () from /usr/lib/libpth.so.20
#6 0x00000000 in ?? ()
--
Maurice van der Pot
Gentoo Linux Developer griffon26 at gentoo.org http://www.gentoo.org
Gnome Planner Developer griffon26 at kfk4ever.com http://live.gnome.org/Planner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
Url : http://lists.xmppd.org/pipermail/dev/attachments/20080809/2fc9071c/attachment.pgp
More information about the dev
mailing list