[Openca-Users] Core-Dump with OCSPD 2.1.0

Fri, 11 Mar 2011 05:44:23 -0800 

I'm testing ocspd-2.1.0 + libpki-c0.6.4 on a SuSE SLES11
a bit more now and am experiencing core dumps when CISCO routers
with IOS 12.4 connect to the server.

Requests from the Cisco router look like:

    POST /ocsp HTTP/1.0
    Host: 10.2.3.4
    

 # *** glibc detected *** /usr/local/ocspd/sbin/ocspd: double free or corruption
(fasttop): 0x000000000064ea40 ***
======= Backtrace: =========
/lib64/libc.so.6(+0x75018)[0x7f8b11a22018]
/lib64/libc.so.6(cfree+0x6c)[0x7f8b11a26f6c]
/usr/local/libpki/lib64/libpki.so.10(PKI_MEM_free+0x30)[0x7f8b1330e580]
/usr/local/libpki/lib64/libpki.so.10(PKI_HTTP_free+0x4d)[0x7f8b133193cd]
/usr/local/libpki/lib64/libpki.so.10(PKI_HTTP_get_message+0xf3)[0x7f8b13319683]
/usr/local/ocspd/sbin/ocspd[0x40496c]
/usr/local/ocspd/sbin/ocspd[0x40478d]
/lib64/libpthread.so.0(+0x75f0)[0x7f8b130ce5f0]
/lib64/libc.so.6(clone+0x6d)[0x7f8b11a8187d]

ocspd.log reports at the same time:

ocspd[16888]: [threads.c:83]::DEBUG::[Thread::4] Got resp from socket
ocspd[16888]: request for certificate serial 482193268434683026217983
ocspd[16888]: [response.c:378]::DEBUG::CRL::CA [SubCA2] nameHash OK
ocspd[16888]: status VALID for 482193268434683026217983
ocspd[16888]: [response.c:239]::DEBUG::Token Algorithm: sha256WithRSAEncryption
ocspd[16888]: [hsm_main.c:507]::DEBUG::Using HSM for Key Operations
ocspd[16888]: [hsm_main.c:515]::DEBUG::HSM sign() callback called
ocspd[16888]: [response.c:252]::DEBUG::Response signed ok!
ocspd[16888]: [response.c:259]::DEBUG::RESP converted -> 1628
ocspd[16888]: [threads.c:90]::DEBUG::[Thread::4] Built resp from socket 
ocspd[16888]: CORE::Connection from [0.0.0.0]
ocspd[16888]: [threads.c:70]::DEBUG::Thread [4] - ot fd 5
ocspd[16888]: [net/http_s.c:173]::DEBUG::READ 139 bytes

ocspd[16888]: [net/http_s.c:229] Memory Allocation Error

ocspd[16888]: [core.c:163]::DEBUG::CORE::Waiting on connect
ocspd[16888]: [core.c:250]::ERR::SIGABRT::received - should not happen,
ocspd[16888]: [core.c:251]::ERR::SIGABRT::please enable strict locking.
ocspd[16888]: [core.c:252]::ERR::ERROR::SIGABRT::Fatal Error, aborting server!


Greetings
    -Achim

------------------------------------------------------------------------------
Colocation vs. Managed Hosting
A question and answer guide to determining the best fit
for your organization - today and in the future.
http://p.sf.net/sfu/internap-sfd2d
_______________________________________________
Openca-Users mailing list
Openca-Users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openca-users

Reply via email to