Hi Steve,
Sorry for the late response.
Thank you for looking into the bug.
In our case, EVP_MD_CTX_copy() failure was caused by an application bug.
A child process was trying to use the session from its parent process,
and that caused an issue down in pkcs11 engine.
The application will be fixed. At the same time, please consider
returning an error so that segmentation fault can be prevented.
Thank you,
-- misaki
On 12/17/13 10:39, Stephen Henson via RT wrote:
On Sat Dec 14 08:42:01 2013, misaki.miyash...@oracle.com wrote:
The Segmentation Fault occurred when EVP_MD_CTX_copy() failed in
tls1_mac().
tls1_mac() doesn't check the return code of EVP_MD_CTX_copy() and keep
going, which results in Segmentation Fault at EVP_DigestUpdate().
The following change in tls1_mac() fixes the segfault issue.
I agree that the return value should be checked but I'd like to know the
underlying cause. EVP_MD_CTX_copy() shouldn't normally fail unless something is
seriously wrong, e.g. memory allocation failures.
Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager majord...@openssl.org
