Bug#286844: Debian bug #286844: possible explanation.

To: 286844@bugs.debian.org
Cc: geoffroy@lrde.epita.fr
Subject: Bug#286844: Debian bug #286844: possible explanation.
From: Darren Tucker <dtucker@zip.com.au>
Date: Mon, 11 Sep 2006 17:39:07 +1000
Message-id: <[🔎] 4505129B.1030000@zip.com.au>
Reply-to: Darren Tucker <dtucker@zip.com.au>, 286844@bugs.debian.org

Hi.

I found your Debian bug report about sshd segfaulting during DH GEX andthink I can offer an explanation. I recently helped someone else whoreported something very similar and tracked it down to an apparent bugin OpenSSL that manifests only on SPARCs and crashes in exactly the samespot as your report.


The problem I found was in OpenSSL's crypto/bn/asm/sparcv8plus.S file.

I see from your output that you have OpenSSL 0.9.7e, which has rev 1.3of this file. The problem was fixed in upstream's revs 1.4 and 1.5,which are:


revision 1.5
date: 2005/11/15 08:02:10;  author: appro;  state: Exp;  lines: +12 -0

Apply "better safe than sorry" approach after addressing sporadic SEGVin bn_sub_words to the rest of the sparcv8plus.S.

----------------------------
revision 1.4
date: 2005/11/11 20:07:07;  author: appro;  state: Exp;  lines: +2 -2
Attempt to resolve sporadic SEGV crashes in bn_sub_words in OpenSSH. I'm
baffled why it crashes and does it sporadically...

You may also find that renaming the "/etc/ssh/moduli" file provides aworkaround, however this just masks the problem rather than fixing it.


--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4  37C9 C982 80C7 8FF4 FA69
    Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.

Reply to:

Prev by Date: Bug#364635: Debian bug #364635: possible workaround
Next by Date: Bug#364635: Debian bug #364635: possible workaround
Previous by thread: Bug#364635: Debian bug #364635: possible workaround
Next by thread: Bug#286844: Debian bug #286844: possible explanation.
Index(es):
- Date
- Thread