On Sep 9, 2011, at 4:56 PM, Paul Witty wrote: > Hi, > Since updating to OpenSSL 1.0.0e from 1.0.0d, I've been suffering a crash > when connecting with DTLS. I've tracked this down to trying to perform a > memcpy of (unsigned int)-13 in do_dtls1_write (where a length of -13 is > passed all the way down from dtls1_do_Write, which seems to be because the > MTU on the DTLS context is 0, despite having manually set it to a non-zero > value. Further investigation shows that the change to dtls1_clear is > clearing everything in the DTLS1_STATE, which includes my previously > configured MTU. Preserving the value of the MTU across the memset in > dtls1_clear fixes the issue. Preserving the MTU might be correct, but it should't crash. So how to you get it to crash? Calling SSL_write() with a len of -13? I would like to be able to recreate the crash...
Best regards Michael > > -- > > Paul Witty > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > Development Mailing List [email protected] > Automated List Manager [email protected] > ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
