Return-Path: Delivered-To: apmail-httpd-bugs-archive@www.apache.org Received: (qmail 83469 invoked from network); 23 Oct 2003 06:27:33 -0000 Received: from daedalus.apache.org (HELO mail.apache.org) (208.185.179.12) by minotaur-2.apache.org with SMTP; 23 Oct 2003 06:27:33 -0000 Received: (qmail 43385 invoked by uid 500); 23 Oct 2003 06:27:10 -0000 Delivered-To: apmail-httpd-bugs-archive@httpd.apache.org Received: (qmail 43360 invoked by uid 500); 23 Oct 2003 06:27:09 -0000 Mailing-List: contact bugs-help@httpd.apache.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: Reply-To: "Apache HTTPD Bugs Notification List" Delivered-To: mailing list bugs@httpd.apache.org Received: (qmail 43345 invoked from network); 23 Oct 2003 06:27:09 -0000 Received: from unknown (HELO exchange.sun.com) (192.18.33.10) by daedalus.apache.org with SMTP; 23 Oct 2003 06:27:09 -0000 Received: (qmail 20435 invoked by uid 50); 23 Oct 2003 06:30:29 -0000 Date: 23 Oct 2003 06:30:29 -0000 Message-ID: <20031023063029.20434.qmail@nagoya.betaversion.org> From: bugzilla@apache.org To: bugs@httpd.apache.org Cc: Subject: DO NOT REPLY [Bug 24030] New: - Missing private key in SSLProxyMachineCertificateFile causes SEGV X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE. http://nagoya.apache.org/bugzilla/show_bug.cgi?id=24030 Missing private key in SSLProxyMachineCertificateFile causes SEGV Summary: Missing private key in SSLProxyMachineCertificateFile causes SEGV Product: Apache httpd-2.0 Version: 2.0.47 Platform: All OS/Version: All Status: NEW Severity: Normal Priority: Other Component: mod_ssl AssignedTo: bugs@httpd.apache.org ReportedBy: kris.verbeeck@advalvas.be When firing a request, the reverse proxy child process segfaults. The segfault occurs in the ssl_callback_proxy_cert() function (ssl_engine_kernel.c) when calling the modssl_set_cert_info() macro. This macro is defined as follows: #define modssl_set_cert_info(info, cert, pkey) \ *cert = info->x509; \ X509_reference_inc(*cert); \ *pkey = info->x_pkey->dec_pkey; \ EVP_PKEY_reference_inc(*pkey) When tracing trough the code with gdb the following values are present in the local variables: (gdb) p info $4 = (struct X509_info_st *) 0x8236688 (gdb) p cert No symbol "cert" in current context. (gdb) p pkey $5 = (struct evp_pkey_st **) 0xbffff26c (gdb) p *info $6 = {x509 = 0x8236bf0, crl = 0x0, x_pkey = 0x0, enc_cipher = {cipher = 0x0, iv = "ú\024/KJh\207§"}, enc_len = 0, enc_data = 0x0, references = 1} (gdb) c Continuing. Program received signal SIGSEGV, Segmentation fault. 0x08095b9d in ssl_callback_proxy_cert (ssl=0x0, x509=0xbffff268, pkey=0xbffff26c) at ssl_engine_kernel.c:1592 1592 modssl_set_cert_info(info, x509, pkey); The problem is that the x_pkey field in the info structure is NULL (the third line in the macro tries to access a field in this x_pkey structure). Mod_proxy/mod_ssl should ensure that there is a private key for every certificate in SSLProxyMachineCertificateFile (and vice versa). (See also the following thread: http://marc.theaimsgroup.com/?l=apache-httpd-dev&m=106629032008685&w=2) (Related to bug 24029) --------------------------------------------------------------------- To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org For additional commands, e-mail: bugs-help@httpd.apache.org