Wireshark-bugs: [Wireshark-bugs] [Bug 3855] New: Wireshark core dumps when decrypting SSL traffi
Date Index · Thread Index · Other Months · All Mailing Lists
Date Prev · Date Next · Thread Prev · Thread Next
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Mon, 10 Aug 2009 13:18:47 -0700 (PDT)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3855

           Summary: Wireshark core dumps when decrypting SSL traffic with
                    SSL debugging enabled
           Product: Wireshark
           Version: 1.0.7
          Platform: x86-64
        OS/Version: Solaris
            Status: NEW
          Severity: Major
          Priority: Medium
         Component: Wireshark
        AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
        ReportedBy: matthew.ball@xxxxxxx


Build Information:
$ wireshark -v
wireshark 1.0.7

Copyright 1998-2009 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled with GTK+ 2.14.5, with GLib 2.18.3, with libpcap 1.0.0, with libz
1.2.3, without POSIX capabilities, with libpcre 7.6, without SMI, without ADNS,
with Lua 5.1, with GnuTLS 2.0.4, with Gcrypt 1.4.1, with MIT Kerberos, without
PortAudio, without AirPcap.

Running on SunOS 5.10, with libpcap version 1.0.0.

Built using Sun C 5.8

--
Wireshark causes a core dump when decoding SSL-encrypted traffic when debugging
is enabled.  The following options were selected in the
~/.wireshark/preferences file:

ssl.keys_list:
10.80.180.17,3334,http,/open/keys/bowmore.pem;10.80.180.17,3332,http,/open/keys/bowmore.pem;10.80.180.17,3335,http,/open/keys/bowmore.pem
ssl.debug_file: /tmp/wireshark_ssldebug.txt

Wireshark won't even come up with these settings.  I had to remove the
ssl.keys_list before the GUI would come up.

Here's a GDB backtrace (but debugging symbols weren't enabled, so it may not be
useful):

$ gdb /opt/csw/bin/wireshark core
GNU gdb 6.6
Copyright (C) 2006 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "i386-pc-solaris2.8"...
(no debugging symbols found)

warning: core file may not match specified executable file.
(no debugging symbols found)
Core was generated by `/opt/firefox3.5/firefox-bin'.
Program terminated with signal 11, Segmentation fault.
#0  0xfed4aa15 in _rt_boot () from /usr/lib/ld.so.1
(gdb) backtrace
#0  0xfed4aa15 in _rt_boot () from /usr/lib/ld.so.1
#1  0xfed4587f in ?? () from /usr/lib/ld.so.1
#2  0x00000001 in ?? ()
#3  0x0000000b in ?? ()
#4  0xfedbe000 in ?? ()
#5  0x08045718 in ?? ()
#6  0xfecf1e13 in ?? ()
#7  0x00000001 in ?? ()
#8  0x0000000b in ?? ()
#9  0x0000000b in ?? ()
#10 0xfddf99e4 in ?? ()
#11 0x08045758 in ?? ()
#12 0xfc9d054b in ?? ()
#13 0x0000000b in ?? ()
#14 0x08045730 in ?? ()
#15 0x00000000 in ?? ()

I suspect (but haven't confirmed) that it would work if I removed the
ssl.debug_file.

Any help would be appreciated!


-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.