Reproducible crash: slurpd+TLS

["Peter A. Savitch" <spam4octan@highway.ru>]

Hello,

I experience reproducible crash in both 2.1.3 and HEAD slurpd.
No matter how I try TLS (STARTTLS or TLS=hard), slurpd crashes on
5th .. 10th update. It does not seem to have such crashes without TLS.

I can not deal with gdb (threads support is broken).

System: i386 SuSE Linux
OpenSSL: 0.9.6c (patched for security issues; I tried 0.9.6e also with
the same effect).

Log file always contains the same during the crash:

=cut
TLS certificate verification: depth: 1, err: 0, subject: /C=RU
    [rest of line cut]
TLS trace: SSL_connect:SSLv3 read server certificate A
tls_read: want=5, got=5
  0000:  16 03 01 00 ab                                     .....             
tls_read: want=171, got=171
   [buffer dump cut]
TLS trace: SSL_connect:SSLv3 read server certificate request A
TLS trace: SSL_connect:SSLv3 read server done A
=cut
<BANG!!!>

While it should continue (if not crashed) with these:
=cut
TLS trace: SSL_connect:SSLv3 write client certificate A
TLS trace: SSL_connect:SSLv3 write client key exchange A
TLS trace: SSL_connect:SSLv3 write certificate verify A
TLS trace: SSL_connect:SSLv3 write change cipher spec A
TLS trace: SSL_connect:SSLv3 write finished A
=cut

I've got a couple of coredumps. Feel free to steal any keys/passwords
You find. I don't care about'em ;-)

These are unstripped binary with it's core:
http://octan.hw.ru/i386-suse-linux-debug/slurpd         800k
http://octan.hw.ru/i386-suse-linux-debug/slurpd.core    4.7M

These are stripped (default):
http://octan.hw.ru/i386-suse-linux/slurpd               202k
http://octan.hw.ru/i386-suse-linux/slurpd.core          4.7M

Thanks a lot. Long live openldap team.

-- 
Best regards,
 Peter                          mailto:spam4octan@highway.ru