Date: Thu, 17 Mar 2016 09:57:34 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 207901] www/squid Host header forgery detection with sslbump leads to crash Message-ID: <bug-207901-13-HEEQY7Xb6g@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-207901-13@https.bugs.freebsd.org/bugzilla/> References: <bug-207901-13@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D207901 --- Comment #7 from Christophe Anselme-Moizan <christophe.anselmemoizan@ora= nge.com> --- I tried with STABLE, rather than RELEASE, same problem [root@FBSD10STABLE ~]# uname -a FreeBSD FBSD10STABLE 10.3-BETA2 FreeBSD 10.3-BETA2 #0 r295624: Mon Feb 15 15:49:00 CET 2016 root@aa:/usr/obj/usr/src/sys/FBSD10PF amd64 2016/03/17 10:17:23.173 kid1| SECURITY ALERT: Host header forgery detected = on local=3D80.252.91.41:443 remote=3D10.0.0.2:58678 FD 55 flags=3D33 (local IP= does not match any domain IP) FATAL: Received Segment Violation...dying. Backtrace follows (deepest frame first): #1: _pthread_sigmask + 0x51a, ip =3D 0x803b20b4a, sp =3D 0x7fffffffda70 #2: _pthread_getspecific + 0xe1c, ip =3D 0x803b2022c, sp =3D 0x7fffffffde30 #3: [unknown] + 0x0, ip =3D 0x7ffffffff193, sp =3D 0x7fffffffdeb0 #4: strlen + 0xb, ip =3D 0x803e7a3ab, sp =3D 0x7fffffffe460 #5: _ZN20ClientRequestContext22hostHeaderVerifyFailedEPKcS1_ + 0x2fe, ip =3D 0x571eee, sp =3D 0x7fffffffe470 #6: _ZN20ClientRequestContext18hostHeaderIpVerifyEPK14_ipcache_addrsRK16DnsLook= upDetails + 0x3f7, ip =3D 0x571987, sp =3D 0x7fffffffe4f0 #7: _ZL15ipcacheCallbackP13ipcache_entryi + 0xc3, ip =3D 0x5fa6d3, sp =3D 0x7fffffffe5b0 #8: _ZL18ipcacheHandleReplyPvPK11_rfc1035_rriPKc + 0x1079, ip =3D 0x5fb7a9,= sp =3D 0x7fffffffe620 #9: _ZL12idnsCallbackP11_idns_queryPKc + 0x5b9, ip =3D 0x590fa9, sp =3D 0x7fffffffe710 #10: _ZL13idnsGrokReplyPKcmi + 0xe47, ip =3D 0x5930f7, sp =3D 0x7fffffffe780 #11: _ZL8idnsReadiPv + 0x57d, ip =3D 0x58d2dd, sp =3D 0x7fffffffe7d0 #12: _ZN4Comm8DoSelectEi + 0x140, ip =3D 0x797ec0, sp =3D 0x7fffffffe8b0 #13: _ZN16CommSelectEngine11checkEventsEi + 0x2e, ip =3D 0x710f4e, sp =3D 0x7fffffffe900 #14: _ZN9EventLoop11checkEngineEP11AsyncEngineb + 0x2c, ip =3D 0x59a30c, sp= =3D 0x7fffffffe920 #15: _ZN9EventLoop7runOnceEv + 0xa6, ip =3D 0x59a5e6, sp =3D 0x7fffffffe960 #16: _ZN9EventLoop3runEv + 0x48, ip =3D 0x59a528, sp =3D 0x7fffffffe9a0 #17: _Z9SquidMainiPPc + 0x26ad, ip =3D 0x600aad, sp =3D 0x7fffffffe9c0 #18: main + 0x14, ip =3D 0x5fe164, sp =3D 0x7fffffffec70 #19: _start + 0x16f, ip =3D 0x503d9f, sp =3D 0x7fffffffecb0 #20: [unknown] + 0x0, ip =3D 0x800b89000, sp =3D 0x7fffffffecf0 Use addr2line of similar to translate offsets to line information. CPU Usage: 33.255 seconds =3D 31.437 user + 1.818 sys Maximum Resident Size: 550688 KB Page faults with physical i/o: 28 --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-207901-13-HEEQY7Xb6g>