On 2012-09-04 at 11:01 +0100, Phil Davies wrote:
> I managed to get unbound to generate a core dump. The back trace
> suggests a possible issue with DNSSEC and OpenSSL related to when
> verifying rsa keys any way here it is:
The OpenSSL Dev mailing-list has just discussed a fix for an OpenSSL
deadlock, with a thread trying to re-acquire an already-held lock, as a
rare occurrence; changelogged as "Fix possible deadlock when decoding
public keys". The report I read was a report from the OpenLDAP folks.
RT ticket (login guest/guest):
OpenLDAP:
http://rt.openssl.org/Ticket/Display.html?id=2866
Earlier/original report:
http://rt.openssl.org/Ticket/Display.html?id=2813
Fix in:
http://cvs.openssl.org/chngview?cn=22570
Perhaps you're hitting the same issue? Does that patch help?
-Phil
_______________________________________________
Unbound-users mailing list
[email protected]
http://unbound.nlnetlabs.nl/mailman/listinfo/unbound-users
