Bug 1223327 - [abrt] ssl_ResetSecurityInfo() calls memset() with invalid pointer
Summary: [abrt] ssl_ResetSecurityInfo() calls memset() with invalid pointer
Keywords:
Status: CLOSED INSUFFICIENT_DATA
Alias: None
Product: Fedora
Classification: Fedora
Component: nss
Version: 21
Hardware: x86_64
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Elio Maldonado Batiz
QA Contact: Fedora Extras Quality Assurance
URL: https://retrace.fedoraproject.org/faf...
Whiteboard: abrt_hash:cad94a30a45a1814a061df39304...
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2015-05-20 10:51 UTC by David Pocina
Modified: 2015-05-20 18:12 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2015-05-20 18:12:47 UTC
Type: ---
Embargoed:


Attachments (Terms of Use)
File: backtrace (14.55 KB, text/plain)
2015-05-20 10:51 UTC, David Pocina
no flags Details
File: cgroup (190 bytes, text/plain)
2015-05-20 10:51 UTC, David Pocina
no flags Details
File: core_backtrace (4.44 KB, text/plain)
2015-05-20 10:51 UTC, David Pocina
no flags Details
File: dso_list (3.72 KB, text/plain)
2015-05-20 10:51 UTC, David Pocina
no flags Details
File: environ (1.70 KB, text/plain)
2015-05-20 10:51 UTC, David Pocina
no flags Details
File: exploitable (82 bytes, text/plain)
2015-05-20 10:51 UTC, David Pocina
no flags Details
File: limits (1.29 KB, text/plain)
2015-05-20 10:51 UTC, David Pocina
no flags Details
File: maps (18.49 KB, text/plain)
2015-05-20 10:51 UTC, David Pocina
no flags Details
File: open_fds (493 bytes, text/plain)
2015-05-20 10:51 UTC, David Pocina
no flags Details
File: proc_pid_status (935 bytes, text/plain)
2015-05-20 10:51 UTC, David Pocina
no flags Details

Description David Pocina 2015-05-20 10:51:05 UTC
Version-Release number of selected component:
curl-7.37.0-13.fc21

Additional info:
reporter:       libreport-2.5.1
backtrace_rating: 4
cmdline:        /usr/bin/curl --user-agent 'Sublime Package Control v2.0.0' --connect-timeout 30 -sSL --compressed --dump-header /tmp/tmpdhytcd --header 'If-Modified-Since: Thu, 23 Apr 2015 09:20:16 GMT' --cacert /etc/pki/tls/certs/ca-bundle.crt https://sublime.wbond.net/channel.json
crash_function: memset
executable:     /usr/bin/curl
kernel:         3.19.3-200.fc21.x86_64
runlevel:       N 5
type:           CCpp
uid:            1000
var_log_messages: [System Logs]:\n-- Logs begin at Thu 2014-12-18 00:10:07 GMT, end at Fri 2015-04-24 11:01:01 IST. --

Truncated backtrace:
Thread no. 1 (10 frames)
 #0 memset at ../sysdeps/x86_64/memset.S:110
 #2 PORT_ZFree_Util at secport.c:138
 #3 SECITEM_ZfreeItem_Util at secitem.c:307
 #4 ssl_ResetSecurityInfo at sslsecur.c:1008
 #5 SSL_ResetHandshake at sslsecur.c:240
 #6 nss_setup_connect at vtls/nss.c:1625
 #7 nss_connect_common at vtls/nss.c:1705
 #8 Curl_nss_connect_nonblocking at vtls/nss.c:1760
 #9 Curl_ssl_connect_nonblocking at vtls/vtls.c:293
 #10 https_connecting at http.c:1381

Comment 1 David Pocina 2015-05-20 10:51:08 UTC
Created attachment 1027612 [details]
File: backtrace

Comment 2 David Pocina 2015-05-20 10:51:09 UTC
Created attachment 1027613 [details]
File: cgroup

Comment 3 David Pocina 2015-05-20 10:51:10 UTC
Created attachment 1027614 [details]
File: core_backtrace

Comment 4 David Pocina 2015-05-20 10:51:11 UTC
Created attachment 1027615 [details]
File: dso_list

Comment 5 David Pocina 2015-05-20 10:51:12 UTC
Created attachment 1027616 [details]
File: environ

Comment 6 David Pocina 2015-05-20 10:51:13 UTC
Created attachment 1027617 [details]
File: exploitable

Comment 7 David Pocina 2015-05-20 10:51:14 UTC
Created attachment 1027618 [details]
File: limits

Comment 8 David Pocina 2015-05-20 10:51:16 UTC
Created attachment 1027619 [details]
File: maps

Comment 9 David Pocina 2015-05-20 10:51:17 UTC
Created attachment 1027620 [details]
File: open_fds

Comment 10 David Pocina 2015-05-20 10:51:18 UTC
Created attachment 1027621 [details]
File: proc_pid_status

Comment 11 Kamil Dudka 2015-05-20 17:04:32 UTC
Is there any way to repeat the crash?

The above command runs fine on my f21 box...

Comment 12 David Pocina 2015-05-20 17:15:54 UTC
I tried to, but I was enable to reproduce either either.
It's probably just a random crash.

maybe is better to just close it  :/

Comment 13 Kamil Dudka 2015-05-20 18:12:47 UTC
As you suggest, we have not enough data to debug this.  Feel free to reopen this bug when you have some steps to reproduce.  Note there is also a little chance it will be fixed by the upcoming update of nss packages:

https://admin.fedoraproject.org/updates/nss-3.19.0-1.0.fc21,nss-softokn-3.19.0-1.0.fc21,nss-util-3.19.0-1.0.fc21


Note You need to log in before you can comment on or make changes to this bug.