Summary: | TestSSLHostConfigCompat crashes with LibreSSL 2.9.0 | ||
---|---|---|---|
Product: | Tomcat Native | Reporter: | Michael Osipov <michaelo> |
Component: | Library | Assignee: | Tomcat Developers Mailing List <dev> |
Status: | RESOLVED WORKSFORME | ||
Severity: | major | ||
Priority: | P2 | ||
Version: | 1.2.23 | ||
Target Milestone: | --- | ||
Hardware: | All | ||
OS: | FreeBSD | ||
Attachments: |
Test output
Sample test result Crash file 1 Crash file 2 Crash file 3 |
Description
Michael Osipov
2020-05-12 09:30:14 UTC
Created attachment 37231 [details]
Test output
Created attachment 37232 [details]
Sample test result
Created attachment 37233 [details]
Crash file 1
Created attachment 37234 [details]
Crash file 2
Created attachment 37235 [details]
Crash file 3
Thanks for diving-into this. I've wanted to support LibreSSL for a long time, but I'm not really an expert in the arcana required to work with OpenSSL. I have already identified other compat issues with LibreSSL which can be easily fixed with the appropriate ifdefs. Getting back to this, my lack of strong C knowledge and the associated Java code is too little to make any progress, but I can happily provide more testing if necessary. As far as I can tell the root cause is a LibreSSL bug. I see the same behaviour with the current Tomcat Native source. I have added some debugging trace to LibreSSL 2.9.0 it it shows a crash at the point where the internal ssl_set_cert(CERT *c, X509 *x) method is called. That looks like memory corruption to me. |