[2.10.1] segfault at gnutls_record.c:58

Yclept Nemo orbisvicis at gmail.com
Wed Aug 18 21:50:02 CEST 2010


Since the patch attached (patch3.txt) only applies cleanly against the
latest mod_gnutls, I'm now using 0.5.7 and haven't tested 0.5.5. From
a limited 1/2-hour of testing I can report the patch solves the bug
reported at http://issues.outoforder.cc/view.php?id=106, so everything
looks good on that front. One note: I'm using apache2-mpm-prefork
2.2.8-1ubuntu0.11 so the additional issues tinlans is reporting might
very well be thread-safety problems.

While the patch also resolves the segfaults I reported when using a
customized GnuTLSPriorities list, it seems to break any communication
with the browser:
GnuTLS: Handshake Failed (-8) 'A record packet with illegal version
was received.'
Invalid method in request \x10
"\x10" 501 521 "-" "-"

Also, I'm not sure if this is related to changes from the patch, but
firefox (same version as above) is telling me:
": server does not support RFC 5746, see CVE-2009-3555"


One question, does 0.5.8 incorporate patch3.txt?

More information about the Gnutls-devel mailing list