Openconnect is segfaulting on the latest amr64 snapshot build with the
GlobalProtect protocol during SSL negotiation. Worked up until
recently. Perhaps related to recent gnutls changes here
https://github.com/openbsd/ports/commit/2c51f0399bca7f603b108362a96a9d01b1e23a6d#diff-b7d0163f8e795412e395cef337f32287c201e271b68d66da94c59c70c749331eL4
Backtrace from openconnect core dump:
#0 0x0000000f9a378080 in sha1_block_data_order () from
/usr/local/lib/libgnutls.so.47.10
#1 0x0000000f9a502628 in aarch64_sha1_update () from
/usr/local/lib/libgnutls.so.47.10
#2 0x0000000f9a502cd8 [PAC] in wrap_aarch64_hash_fast () from
/usr/local/lib/libgnutls.so.47.10
#3 0x0000000f9a412670 [PAC] in _gnutls_hash_fast () from
/usr/local/lib/libgnutls.so.47.10
#4 0x0000000f9a427b30 [PAC] in gnutls_fingerprint () from
/usr/local/lib/libgnutls.so.47.10
#5 0x0000001042daa400 [PAC] in verify_peer () from
/usr/local/lib/libopenconnect.so.4.5
#6 0x0000000f9a403db8 [PAC] in _gnutls_run_verify_callback () from
/usr/local/lib/libgnutls.so.47.10
#7 0x0000000f9a401458 [PAC] in gnutls_handshake () from
/usr/local/lib/libgnutls.so.47.10
#8 0x0000001042daa720 [PAC] in cstp_handshake () from
/usr/local/lib/libopenconnect.so.4.5
#9 0x0000001042da9c30 [PAC] in openconnect_open_https () from
/usr/local/lib/libopenconnect.so.4.5
#10 0x0000001042d70fa4 [PAC] in do_https_request () from
/usr/local/lib/libopenconnect.so.4.5
#11 0x0000001042d932b4 [PAC] in gpst_login () from
/usr/local/lib/libopenconnect.so.4.5
#12 0x0000001042d930ac [PAC] in gpst_obtain_cookie () from
/usr/local/lib/libopenconnect.so.4.5
No comments:
Post a Comment