Closed
Bug 264296
Opened 20 years ago
Closed 18 years ago
sslsample maybe crashed when provide an invalid client cert
Categories
(NSS :: Tools, defect, P5)
Tracking
(Not tracked)
RESOLVED
WONTFIX
3.12
People
(Reporter: lpbpu, Assigned: nelson)
References
Details
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.0.3705) Build Identifier: NSS3.9 sslsample In sslsample server.c function setupSSLSocket,line 260,as follow: secStatus = SSL_BadCertHook(sslSocket, (SSLBadCertHandler)myBadCertHandler, &certErr); And in sslsample.c function myBadCertHandler line 179,as follow: *(PRErrorCode *)arg = err = PORT_GetError(); I guess when an invalid client cert provide,it will call myBadCertHandler,and set error to arg. But unfortunately,the arg certErr is declared in function setupSSLSocket,when this function exit,the memoryspace allocate for certErr was took back by OS.And when myBadCertHandler was called,it will use an invalid address to set error code. Reproducible: Sometimes Steps to Reproduce: 1. 2. 3.
Updated•20 years ago
|
Assignee: wchang0222 → nelson
Status: UNCONFIRMED → NEW
Ever confirmed: true
Assignee | ||
Updated•19 years ago
|
QA Contact: bishakhabanerjee → jason.m.reid
Assignee | ||
Updated•18 years ago
|
QA Contact: jason.m.reid → tools
Assignee | ||
Comment 1•18 years ago
|
||
I have filed bug 359302, which requests that the non-exemplary sslsample source code be expunged from the NSS source tree.
Blocks: 359302
Status: NEW → RESOLVED
Closed: 18 years ago
Priority: -- → P5
Resolution: --- → WONTFIX
Target Milestone: --- → 3.12
Version: unspecified → 3.9
You need to log in
before you can comment on or make changes to this bug.
Description
•