878952 – [abrt] python-2.7.3-7.2.fc17: OpenSSLDie: Process /usr/bin/python2.7 was killed by signal 6 (SIGABRT)

Bug 878952 - [abrt] python-2.7.3-7.2.fc17: OpenSSLDie: Process /usr/bin/python2.7 was killed by signal 6 (SIGABRT)

Summary: [abrt] python-2.7.3-7.2.fc17: OpenSSLDie: Process /usr/bin/python2.7 was kill...

Keywords:
Status:	CLOSED WONTFIX
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	openssl
Sub Component:
Version:	17
Hardware:	x86_64
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Tomas Mraz
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:	abrt_hash:074cec4a88c39af109dc2346b8e...
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2012-11-21 16:03 UTC by Miloslav Trmač
Modified:	2012-11-21 16:18 UTC (History)
CC List:	6 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2012-11-21 16:18:56 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)
File: core_backtrace (2.21 KB, text/plain) 2012-11-21 16:03 UTC, Miloslav Trmač	no flags	Details
File: environ (2.94 KB, text/plain) 2012-11-21 16:03 UTC, Miloslav Trmač	no flags	Details
File: backtrace (19.29 KB, text/plain) 2012-11-21 16:04 UTC, Miloslav Trmač	no flags	Details
File: cgroup (127 bytes, text/plain) 2012-11-21 16:04 UTC, Miloslav Trmač	no flags	Details
File: limits (1.29 KB, text/plain) 2012-11-21 16:04 UTC, Miloslav Trmač	no flags	Details
File: executable (18 bytes, text/plain) 2012-11-21 16:04 UTC, Miloslav Trmač	no flags	Details
File: maps (20.45 KB, text/plain) 2012-11-21 16:04 UTC, Miloslav Trmač	no flags	Details
File: dso_list (4.50 KB, text/plain) 2012-11-21 16:04 UTC, Miloslav Trmač	no flags	Details
File: proc_pid_status (924 bytes, text/plain) 2012-11-21 16:04 UTC, Miloslav Trmač	no flags	Details
File: open_fds (105 bytes, text/plain) 2012-11-21 16:04 UTC, Miloslav Trmač	no flags	Details
File: var_log_messages (152 bytes, text/plain) 2012-11-21 16:04 UTC, Miloslav Trmač	no flags	Details
View All

Description Miloslav Trmač 2012-11-21 16:03:52 UTC

Description of problem:
Tried running the Python test suite with incorrectly set up OPENSSL_FORCE_FIPS_MODE=1 without prelinking.  Output was:

ERROR:root:code for hash md5 was not found.
Traceback (most recent call last):
  File "/usr/lib64/python2.7/hashlib.py", line 121, in <module>
    globals()[__func_name] = __get_hash(__func_name)
  File "/usr/lib64/python2.7/hashlib.py", line 92, in __get_openssl_constructor
    f(usedforsecurity=False)
ValueError: error:2D07D06A:FIPS routines:EVP_DigestInit_ex:fips selftest failed
ERROR:root:code for hash sha1 was not found.
Traceback (most recent call last):
  File "/usr/lib64/python2.7/hashlib.py", line 121, in <module>
    globals()[__func_name] = __get_hash(__func_name)
  File "/usr/lib64/python2.7/hashlib.py", line 92, in __get_openssl_constructor
    f(usedforsecurity=False)
ValueError: error:2D07D06A:FIPS routines:EVP_DigestInit_ex:fips selftest failed
ERROR:root:code for hash sha224 was not found.
Traceback (most recent call last):
  File "/usr/lib64/python2.7/hashlib.py", line 121, in <module>
    globals()[__func_name] = __get_hash(__func_name)
  File "/usr/lib64/python2.7/hashlib.py", line 92, in __get_openssl_constructor
    f(usedforsecurity=False)
ValueError: error:2D07D06A:FIPS routines:EVP_DigestInit_ex:fips selftest failed
ERROR:root:code for hash sha256 was not found.
Traceback (most recent call last):
  File "/usr/lib64/python2.7/hashlib.py", line 121, in <module>
    globals()[__func_name] = __get_hash(__func_name)
  File "/usr/lib64/python2.7/hashlib.py", line 92, in __get_openssl_constructor
    f(usedforsecurity=False)
ValueError: error:2D07D06A:FIPS routines:EVP_DigestInit_ex:fips selftest failed
ERROR:root:code for hash sha384 was not found.
Traceback (most recent call last):
  File "/usr/lib64/python2.7/hashlib.py", line 121, in <module>
    globals()[__func_name] = __get_hash(__func_name)
  File "/usr/lib64/python2.7/hashlib.py", line 92, in __get_openssl_constructor
    f(usedforsecurity=False)
ValueError: error:2D07D06A:FIPS routines:EVP_DigestInit_ex:fips selftest failed
ERROR:root:code for hash sha512 was not found.
Traceback (most recent call last):
  File "/usr/lib64/python2.7/hashlib.py", line 121, in <module>
    globals()[__func_name] = __get_hash(__func_name)
  File "/usr/lib64/python2.7/hashlib.py", line 92, in __get_openssl_constructor
    f(usedforsecurity=False)
ValueError: error:2D07D06A:FIPS routines:EVP_DigestInit_ex:fips selftest failed
fips.c(153): OpenSSL internal error, assertion failed: FATAL FIPS SELFTEST FAILURE
Neúspěšně ukončen (SIGABRT) (core dumped [obraz paměti uložen])


(This causes FIPS mode to be enabled, but fail on initialization.  This is not really expected to "work", and some error messages _were_ output, but outputing the error message without crashing would be preferrable.)

Version-Release number of selected component:
python-2.7.3-7.2.fc17

Additional info:
libreport version: 2.0.18
abrt_version:   2.0.18
backtrace_rating: 4
cmdline:        python tests/alltests.py
crash_function: OpenSSLDie
kernel:         3.6.6-1.fc17.x86_64

truncated backtrace:
:Thread no. 1 (10 frames)
: #2 OpenSSLDie at cryptlib.c:891
: #3 EVP_DigestUpdate at digest.c:288
: #4 ssleay_rand_add at md_rand.c:270
: #5 RAND_load_file at randfile.c:130
: #6 _wrap_rand_load_file at SWIG/_m2crypto_wrap.c:9755
: #7 call_function at /usr/src/debug/Python-2.7.3/Python/ceval.c:4098
: #8 PyEval_EvalFrameEx at /usr/src/debug/Python-2.7.3/Python/ceval.c:2740
: #9 PyEval_EvalCodeEx at /usr/src/debug/Python-2.7.3/Python/ceval.c:3330
: #10 fast_function at /usr/src/debug/Python-2.7.3/Python/ceval.c:4194
: #11 call_function at /usr/src/debug/Python-2.7.3/Python/ceval.c:4119

Comment 1 Miloslav Trmač 2012-11-21 16:03:56 UTC

Created attachment 649283 [details]
File: core_backtrace

Comment 2 Miloslav Trmač 2012-11-21 16:03:59 UTC

Created attachment 649284 [details]
File: environ

Comment 3 Miloslav Trmač 2012-11-21 16:04:01 UTC

Created attachment 649286 [details]
File: backtrace

Comment 4 Miloslav Trmač 2012-11-21 16:04:03 UTC

Created attachment 649287 [details]
File: cgroup

Comment 5 Miloslav Trmač 2012-11-21 16:04:06 UTC

Created attachment 649288 [details]
File: limits

Comment 6 Miloslav Trmač 2012-11-21 16:04:08 UTC

Created attachment 649289 [details]
File: executable

Comment 7 Miloslav Trmač 2012-11-21 16:04:11 UTC

Created attachment 649290 [details]
File: maps

Comment 8 Miloslav Trmač 2012-11-21 16:04:13 UTC

Created attachment 649291 [details]
File: dso_list

Comment 9 Miloslav Trmač 2012-11-21 16:04:15 UTC

Created attachment 649292 [details]
File: proc_pid_status

Comment 10 Miloslav Trmač 2012-11-21 16:04:18 UTC

Created attachment 649293 [details]
File: open_fds

Comment 11 Miloslav Trmač 2012-11-21 16:04:20 UTC

Created attachment 649294 [details]
File: var_log_messages

Comment 12 Miloslav Trmač 2012-11-21 16:18:56 UTC

So, what happened here:
* RAND_add() was called
* RAND_add() internally called EVP_DigestInit(), without checking for failure
  EVP_DigestInit() detected the FIPS selftest failure and returned an error code
* RAND_add() then called EVP_DigestUpdate(), which abort()ed because the FIPS
  self-test failed and the caller was not supposed to call *Update on something
  that failed *Init.

So, RAND_add() should have had error handling.  OTOH RAND_add() returns void, so it has no way to indicate failure to the caller, and failure to add randomness can critically break a cryptosystem; silently ignoring a failure is not an option.

So the only error handling RAND_add() could have realistically added is a call to abort(), which happens to be basically what the current code does.

Note You need to log in before you can comment on or make changes to this bug.