On Fri, Apr 25, 2014 at 02:05:06PM +0300, Pat wrote:
> Hello,
>
> It's been constantly crashing since the last update following Heartbleed
> day. It usually happens after 10-15 unsuccessful key negotiations:
>
> .. TLS Error: TLS key negotiation failed to occur within 60 seconds
> (check your network connectivity)
> ..
> .. TLS Error: TLS key negotiation failed to occur within 60 seconds
> (check your network connectivity)
>
> Couple of different stack traces:
This *might* as well be the new more aggressive malloc junk after free
that is enabled by default. Can you try with MALLOC_OPTIONS=j?
-Otto
>
> (gdb) bt
> #0 0x00000cc8efbe8452 in strlen (str=0x73a7369807739c17 <Address
> 0x73a7369807739c17 out of bounds>)
> at /usr/src/lib/libc/string/strlen.c:43
> #1 0x00000cc8efbd8b08 in __vfprintf (fp=0x7f7ffffce950,
> fmt0=0xcc6e5d8a961 "%s%s%s", ap=Variable "ap" is not avail
> able.
> )
> at /usr/src/lib/libc/stdio/vfprintf.c:878
> #2 0x00000cc8efbc3d18 in vsnprintf (str=0xcc8f5df7008 "", n=1280,
> fmt=0xcc6e5d8a961 "%s%s%s", ap=0x7f7ffffcea60)
> at /usr/src/lib/libc/stdio/vsnprintf.c:61
> #3 0x00000cc6e5c0a5d0 in openvpn_snprintf (str=0xcc8f5df7008 "",
> size=1280, format=0xcc6e5d8a961 "%s%s%s")
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/buffer.c:268
> #4 0x00000cc6e5c12c90 in x_msg_va (flags=1174405256,
> format=0xcc6e5da2b48 "ACK reliable_can_send active=%d current=%d :
> %s", arglist=0x7f7ffffcec40)
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/error.c:309
> #5 0x00000cc6e5c129ba in x_msg (flags=1174405256,
> format=0xcc6e5da2b48 "ACK reliable_can_send active=%d current=%d : %s")
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/error.c:206
> #6 0x00000cc6e5c69fbc in reliable_can_send (rel=0xcc8e9c2d800)
> at
> /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/reliable.c:516
> #7 0x00000cc6e5c7cd61 in tls_process (multi=0xcc8ea6a1150,
> session=0xcc8ea6a1398, to_link=0xcc8f1c1fe40,
> to_link_addr=0x7f7ffffceea0, to_link_socket_info=0xcc8e8555ac8,
> wakeup=0x7f7ffffcef34)
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/ssl.c:2305
> #8 0x00000cc6e5c7dcff in tls_multi_process (multi=0xcc8ea6a1150,
> to_link=0xcc8f1c1fe40,
> to_link_addr=0xcc8f1c1fb70, to_link_socket_info=0xcc8e8555ac8,
> wakeup=0x7f7ffffcef34)
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/ssl.c:2598
> #9 0x00000cc6e5c1525e in check_tls_dowork (c=0xcc8f1c1f388)
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/forward.c:100
> #10 0x00000cc6e5c1941e in check_tls (c=0xcc8f1c1f388) at forward-inline.h:41
> #11 0x00000cc6e5c1935f in pre_select (c=0xcc8f1c1f388)
> at
> /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/forward.c:1321
> #12 0x00000cc6e5c3e2e2 in multi_process_post (m=0x7f7ffffcf080,
> mi=0xcc8f1c1f2d0, flags=5)
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/multi.c:2044
> #13 0x00000cc6e5c38a06 in multi_process_outgoing_link_dowork
> (m=0x7f7ffffcf080, mi=0xcc8f1c1f2d0, mpp_flags=5)
> at multi.h:560
> #14 0x00000cc6e5c38934 in multi_process_outgoing_link (m=0x7f7ffffcf080,
> mpp_flags=5)
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/mudp.c:121
> #15 0x00000cc6e5c38858 in multi_process_io_udp (m=0x7f7ffffcf080)
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/mudp.c:160
> #16 0x00000cc6e5c38c41 in tunnel_server_udp_single_threaded
> (top=0x7f7ffffcfe50)
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/mudp.c:266
> #17 0x00000cc6e5c3906e in tunnel_server_udp (top=0x7f7ffffcfe50)
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/mudp.c:288
> #18 0x00000cc6e5c4018d in tunnel_server (top=0x7f7ffffcfe50)
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/multi.c:2860
> #19 0x00000cc6e5c42687 in openvpn_main (argc=4, argv=0x7f7ffffd0b38)
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/openvpn.c:253
> #20 0x00000cc6e5c427c9 in main (argc=4, argv=0x7f7ffffd0b38)
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/openvpn.c:324
>
> another one:
>
> (gdb) bt
> #0 EVP_DecryptFinal_ex (ctx=0x17d3291b7d00, out=0x48 <Address 0x48 out
> of bounds>, outl=0x7f7ffffd8fac) at
> /usr/src/lib/libcrypto/crypto/../../libssl/src/crypto/evp/evp_enc.c:552
> #1 0x000017d119011aa4 in cipher_ctx_final (ctx=0x17d3291b7d00, dst=0x48
> <Address 0x48 out of bounds>, dst_len=0x7f7ffffd8fac)
> at
> /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/crypto_openssl.c:608
> #2 0x000017d11900db64 in openvpn_decrypt (buf=0x17d319984e10,
> work={capacity = 0, offset = 0, len = 72, data = 0x0},
> opt=0x17d319984d30, frame=0x17d319984ba8)
> at /usr/ports/pobj/openvpn-2.3.2/openvpn-2.3.2/src/openvpn/crypto.c:314
> #3 0x0000000000000000 in ?? ()
>
>
> Different place every time but the same access violation (address out of
> bounds).
>
> Anyone experiencing the same ?
>
> PS. I know it sucks
