Matt Caswell via RT | 22 Dec 17:41 2014
Picon

[openssl.org #3611] Segmentation fault during SSL_free

On Mon Dec 22 17:38:49 2014, shreyas <at> viptela.com wrote:
> Hey Matt,
>
> Sorry, but we haven't hit this issue again in our code. I cleaned up some
> code with valgrind. Maybe that fixed some issues too. I will get back in
> touch with you if I come across this trace again.
>
Ok - thanks for the update Shreyas. I'll close this ticket for now. You can
reopen it by replying to this message should this occur again.

Regards

Matt

_______________________________________________
openssl-dev mailing list
openssl-dev <at> openssl.org
https://mta.opensslfoundation.net/mailman/listinfo/openssl-dev

Shreyas Heranjal via RT | 22 Dec 17:38 2014
Picon

Re: [openssl.org #3611] Segmentation fault during SSL_free

Hey Matt,

Sorry, but we haven't hit this issue again in our code. I cleaned up some
code with valgrind. Maybe that fixed some issues too. I will get back in
touch with you if I come across this trace again.

Thanks,
Shreyas

On Mon, Dec 22, 2014 at 6:52 AM, Matt Caswell via RT <rt <at> openssl.org> wrote:

> No response from OP so setting this ticket to stalled.
>
> Matt
>
>

_______________________________________________
openssl-dev mailing list
openssl-dev <at> openssl.org
https://mta.opensslfoundation.net/mailman/listinfo/openssl-dev

Richard Levitte via RT | 22 Dec 16:32 2014
Picon

[openssl.org #3617] [PATCH] Improves certificates HOWTO doc

Pushed, will appear in the next updates/releases from 1.0.1 and on.

On Mon Dec 22 14:22:29 2014, levitte wrote:
> Cool, thanks. I've applied your patch, it should be pushed pretty soon.
>
> On Mon Dec 01 10:43:29 2014, alok <at> squareup.com wrote:
> > Hey,
> >
> > The current documentation (hosted at
> > https://www.openssl.org/docs/HOWTO/certificates.txt) contains a few
> > spelling. It also contains placeholder references to documents which
> > now exist. Attached is my attempt to improve the doc.
> >
> > Alok
>
>
> --
> Richard Levitte
> levitte <at> openssl.org

--
Richard Levitte
levitte <at> openssl.org

_______________________________________________
openssl-dev mailing list
openssl-dev <at> openssl.org
https://mta.opensslfoundation.net/mailman/listinfo/openssl-dev

(Continue reading)

Richard Levitte via RT | 22 Dec 16:31 2014
Picon

[openssl.org #3601] [PATCH] Improves the proxy certificates howto doc.

Pushed, will appear in the next updates/releases from 1.0.1 and on.

On Mon Dec 22 14:33:32 2014, levitte wrote:
> Okie, applied, should appear in the repo pretty soon.
>
> On Sun Nov 30 09:22:17 2014, alok <at> squareup.com wrote:
> > Great. There is one minor typo left, patch attached.
> >
> > Alok
> >
> > On Fri, Nov 28, 2014 at 7:38 AM, Richard Levitte via RT
> > <rt <at> openssl.org>
> > wrote:
> >
> > > I just read them through, and it looks good, I just needed to do a
> > couple
> > > of
> > > layout adjustments. Committed.
> > >
> > > Thank you.
> > >
> > > On Sat Nov 15 11:17:51 2014, alok <at> squareup.com wrote:
> > > > Hi,
> > > >
> > > > The current documentation (hosted at
> > > > https://www.openssl.org/docs/HOWTO/proxy_certificates.txt)
> > contains a
> > > bunch
> > > > of spelling and grammar mistakes. I also found it hard to
> > understand some
(Continue reading)

Matt Caswell via RT | 22 Dec 15:52 2014
Picon

[openssl.org #3611] Segmentation fault during SSL_free

No response from OP so setting this ticket to stalled.

Matt

_______________________________________________
openssl-dev mailing list
openssl-dev <at> openssl.org
https://mta.opensslfoundation.net/mailman/listinfo/openssl-dev

Matt Caswell via RT | 22 Dec 15:45 2014
Picon

[openssl.org #3620] bug report ASN1_item_d2i causes memory leak

On Tue Dec 02 22:50:07 2014, Luis.Garcia <at> csr.com wrote:
> Hi,
>
> The bug list server of openssl is very slow to access, so I am not
> sure if this bug has already been filed.
>
> When using the routine ASN1_item_d2i, the pointer passed as the "in"
> variable gets modified in

Whilst slightly unexpected behaviour this is indeed the documented API. See for
example d2i_X509:

https://www.openssl.org/docs/crypto/d2i_X509.html

Closing this ticket.

Matt

_______________________________________________
openssl-dev mailing list
openssl-dev <at> openssl.org
https://mta.opensslfoundation.net/mailman/listinfo/openssl-dev

openssl-dev | 20 Dec 10:07 2014
Picon

TMN - Receber aqui os MMS que lhe enviarem

Spam detection software, running on the system "mta",
has identified this incoming email as possible spam.  The original
message has been attached to this so you can view it or label
similar future email.  If you have any questions, see
 <at>  <at> CONTACT_ADDRESS <at>  <at>  for details.

Content preview:  [...] 

Content analysis details:   (5.2 points, 5.0 required)

 pts rule name              description
---- ---------------------- --------------------------------------------------
 0.0 URIBL_BLOCKED          ADMINISTRATOR NOTICE: The query to URIBL was blocked.
                            See
                            http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
                             for more information.
                            [URIs: imgbox.com]
 0.0 NORMAL_HTTP_TO_IP      URI: Uses a dotted-decimal IP address in URL
 0.3 HTML_IMAGE_ONLY_04     BODY: HTML: images with 0-400 bytes of words
 1.1 MIME_HTML_ONLY         BODY: Message only has text/html MIME parts
 0.0 HTML_MESSAGE           BODY: HTML included in message
-0.0 RCVD_IN_MSPIKE_H3      RBL: Good reputation (+3)
                            [194.97.152.144 listed in wl.mailspike.net]
-0.0 RCVD_IN_MSPIKE_WL      Mailspike good senders
 0.1 HTML_SHORT_LINK_IMG_1  HTML is very short with a linked image
 0.6 HTML_MIME_NO_HTML_TAG  HTML-only message, but there is no HTML tag
 0.0 T_REMOTE_IMAGE         Message contains an external image
 3.0 TO_EQ_FM_HTML_ONLY     To == From and HTML only

The original message was not completely plain text, and may be unsafe to
(Continue reading)

Picon

Re: [openssl.org #3592] bug report. Crash. Critical? Security bug?

Hmm... again asserts...
s->init_num == 0

full backtrace attached...

2014-12-18 13:10 GMT+03:00 Matt Caswell via RT <rt <at> openssl.org>:

> On Thu Dec 18 04:54:57 2014, v.badalyan <at> open-bs.ru wrote:
> > Thanks! Great!
> > 6000 calls. No crashes or leaks.... only messages like this in
> > asterisk
> > [2014-12-18 04:59:20] ERROR[31074][C-000013d4] res_rtp_asterisk.c:
> > DTLS
> > failure occurred on RTP instance '0x298c1d68' due to reason 'digest
> > check
> > failed', terminating
> > [2014-12-18 04:59:28] ERROR[31081][C-000013d7] res_rtp_asterisk.c:
> > DTLS
> > failure occurred on RTP instance '0x29d16508' due to reason 'digest
> > check
> > failed', terminating
> > [2014-12-18 05:04:07] ERROR[31881][C-0000142d] res_rtp_asterisk.c:
> > DTLS
> > failure occurred on RTP instance '0x29fe0ac8' due to reason 'digest
> > check
> > failed', terminating
> >
> > But 99% call go normal. We will test on production server and high
> > load.
>
(Continue reading)

Richard Levitte via RT | 22 Dec 14:33 2014
Picon

[openssl.org #3601] [PATCH] Improves the proxy certificates howto doc.

Okie, applied, should appear in the repo pretty soon.

On Sun Nov 30 09:22:17 2014, alok <at> squareup.com wrote:
> Great. There is one minor typo left, patch attached.
>
> Alok
>
> On Fri, Nov 28, 2014 at 7:38 AM, Richard Levitte via RT
> <rt <at> openssl.org>
> wrote:
>
> > I just read them through, and it looks good, I just needed to do a
> couple
> > of
> > layout adjustments. Committed.
> >
> > Thank you.
> >
> > On Sat Nov 15 11:17:51 2014, alok <at> squareup.com wrote:
> > > Hi,
> > >
> > > The current documentation (hosted at
> > > https://www.openssl.org/docs/HOWTO/proxy_certificates.txt)
> contains a
> > bunch
> > > of spelling and grammar mistakes. I also found it hard to
> understand some
> > > paragraphs, so here is my attempt to improve its overall
> readability.
> > >
(Continue reading)

Richard Levitte via RT | 22 Dec 14:22 2014
Picon

[openssl.org #3617] [PATCH] Improves certificates HOWTO doc

Cool, thanks. I've applied your patch, it should be pushed pretty soon.

On Mon Dec 01 10:43:29 2014, alok <at> squareup.com wrote:
> Hey,
>
> The current documentation (hosted at
> https://www.openssl.org/docs/HOWTO/certificates.txt) contains a few
> spelling. It also contains placeholder references to documents which
> now exist. Attached is my attempt to improve the doc.
>
> Alok

--
Richard Levitte
levitte <at> openssl.org

_______________________________________________
openssl-dev mailing list
openssl-dev <at> openssl.org
https://mta.opensslfoundation.net/mailman/listinfo/openssl-dev

Matt Caswell via RT | 22 Dec 13:26 2014
Picon

[openssl.org #3623] faulting module ssleay32.dll, version 0.0.0.0, fault address 0x00010c8b.

Hi Vijendra

There is insufficient information from your description to determine whether
this is a fault with OpenSSL or with your application. If this is still an
issue for you, please raise it on the openssl-users email list.

Since it cannot be determined that there is a problem OpenSSL itself I am
closing this ticket for now.

Regards

Matt

_______________________________________________
openssl-dev mailing list
openssl-dev <at> openssl.org
https://mta.opensslfoundation.net/mailman/listinfo/openssl-dev


Gmane