httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject DO NOT REPLY [Bug 48260] New: Firefox 3.6 causes SIGSEGV in ssl3_finish_mac()
Date Sun, 22 Nov 2009 14:04:23 GMT

           Summary: Firefox 3.6 causes SIGSEGV in ssl3_finish_mac()
           Product: Apache httpd-2
           Version: 2.2.14
          Platform: All
        OS/Version: NetBSD
            Status: NEW
          Severity: normal
          Priority: P2
         Component: mod_ssl

The server is running NetBSD-5.0 with SSL-enabled Apache-2.2.14 (older Apache
exhibit the same problem). From time to time, httpd gets a SIGSEGV in
ssl3_finish_mac(). That behavior seems common, and other NetBSD users report
experiencing it.

That happens with a plain config (no additonnal module), serving static pages. 

Starting with Firefox 3.6, the crash can occur on each request: at once,
Firefox can load a page normally. If I make a burst of a dozen page reloads,
httpd will crash in ssl3_finish_mac(), and Firefox will give me a "The
connexion was Reset". Any attempt to load a page by this Firefox instance on
this server will then fail, until Apache is restarted. 

Once I get into this state, other client can load pages from Apache, so the
problem is with a shared state between Apache and Firefox.

I have a workaround: in Firefox, setting security.enable_tls_session_tickets to
false will fix the problem. As Firefox 3.6 ussage will increase, I'd be quite
interested by a similar server-side workaround.

I am not sure if there is a bug in Firefox 3.6, but since a sgmentation fault
is always the sign of some illness, I suspect the situation is worth an Apache
bug report.

Configure bugmail:
------- You are receiving this mail because: -------
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message