Segmentation fault with self signed certificate
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
curl (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
When requesting an HTTPS url hxxps:/
(gdb) run
Starting program: /home/wiredrat/
[Depuración de hilo usando libthread_db enabled]
Using host libthread_db library "/lib/x86_
[Nuevo Thread 0x7ffff2c2b700 (LWP 25858)]
[Thread 0x7ffff2c2b700 (LWP 25858) terminado]
Program received signal SIGSEGV, Segmentation fault.
0x00007ffff6e9db19 in gnutls_
(gdb) bt
#0 0x00007ffff6e9db19 in gnutls_
#1 0x00007ffff7bc1ec9 in gtls_connect_step3 (conn=conn@
#2 0x00007ffff7bc2a7a in gtls_connect_common (conn=conn@
done=
#3 0x00007ffff7bc2e0d in Curl_gtls_
done=
#4 0x00007ffff7bc3540 in Curl_ssl_
at vtls/vtls.c:293
#5 0x00007ffff7b86ffe in https_connecting (conn=0x65aa50, done=<optimized out>) at http.c:1354
#6 0x00007ffff7ba9571 in multi_runsingle (multi=
#7 0x00007ffff7baa1c1 in curl_multi_perform (multi_
running_
#8 0x00007ffff7ba1923 in easy_transfer (multi=0x6514f0) at easy.c:705
#9 easy_perform (events=false, data=0x648750) at easy.c:784
#10 curl_easy_perform (easy=0x648750) at easy.c:803
#11 0x0000000000400b06 in main ()
Attached PoC can reproduce the issue against this url. The problem do not appear when linking against libcurl3-openssl. I suspect the problem is related to malformed certificate.
Attached openssl s_client -showcertis for offending domain.