Mailing List Archive: Cherokee: users

cherokee crashes on slowloris https check?

Index | Next | Previous | View Threaded

info at pcintelligence

Jul 7, 2009, 5:48 AM

Post #1 of 17 (821 views)
Permalink

cherokee crashes on slowloris https check?

Hi,

I am running slowloris against my cherokee SSL website and could not
connect to my https website anymore.
Logfile shows:
Jul 7 14:22:59 pcintelw01 cherokee-worker: *** glibc detected ***
/usr/local/sbin/cherokee-worker: double free or co
rruption (!prev): 0xabcec248 ***

Is it a small bug in cherokee or something else?

Kind Regards,

Michiel
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

stefan at konink

Jul 7, 2009, 6:03 AM

Post #2 of 17 (797 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Michiel van Es wrote:
> Hi,
>
> I am running slowloris against my cherokee SSL website and could not
> connect to my https website anymore.
> Logfile shows:
> Jul 7 14:22:59 pcintelw01 cherokee-worker: *** glibc detected ***
> /usr/local/sbin/cherokee-worker: double free or co
> rruption (!prev): 0xabcec248 ***
>
>
> Is it a small bug in cherokee or something else?

Pretty please do! You could help us even more by doing the following:

Compile cherokee with -g (that is the default option). Run:

gdb --args /path/to/cherokee-worker
r

[try to crash it again]

if it crashes:

bt

And paste the output the the bug track system or mailinglist.

Stefan
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEAREKAAYFAkpTR7YACgkQYH1+F2Rqwn1yUQCeMdLpsvJPyDA/nfXQcF/+eEJY
RiMAn1xUl0F8A0+ffaobMu8BICaXM/cV
=os+N
-----END PGP SIGNATURE-----
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

alvaro at alobbs

Jul 7, 2009, 6:05 AM

Post #3 of 17 (800 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

On 07-jul-09, at 14:48, Michiel van Es wrote:

> I am running slowloris against my cherokee SSL website and could not
> connect to my https website anymore.
> Logfile shows:
> Jul 7 14:22:59 pcintelw01 cherokee-worker: *** glibc detected ***
> /usr/local/sbin/cherokee-worker: double free or co
> rruption (!prev): 0xabcec248 ***
>
> Is it a small bug in cherokee or something else?

You must have hit a bug.

Could you please execute it under valgrind?

--
Greetings, alo
http://www.alobbs.com/

_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

info at pcintelligence

Jul 7, 2009, 6:16 AM

Post #4 of 17 (797 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

-------- Original Message --------
Subject: Re: [Cherokee] cherokee crashes on slowloris https check?
From: Stefan de Konink <stefan [at] konink>
To: Michiel van Es <info [at] pcintelligence>
Date: 07/07/2009 03:03 PM

> Michiel van Es wrote:
>> Hi,
>
>> I am running slowloris against my cherokee SSL website and could not
>> connect to my https website anymore.
>> Logfile shows:
>> Jul 7 14:22:59 pcintelw01 cherokee-worker: *** glibc detected ***
>> /usr/local/sbin/cherokee-worker: double free or co
>> rruption (!prev): 0xabcec248 ***
>
>
>> Is it a small bug in cherokee or something else?
>
> Pretty please do! You could help us even more by doing the following:
>
> Compile cherokee with -g (that is the default option).

So if it is default I don't have to recompile cherokee right?

Run:
>
> gdb --args /path/to/cherokee-worker
> r
>
> [try to crash it again]
>
> if it crashes:
>
> bt

I don't have to start cherokee from within the init script? Just above
commands?

>
> And paste the output the the bug track system or mailinglist.

Will do..

>
>
> Stefan

Michiel
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

info at pcintelligence

Jul 7, 2009, 6:28 AM

Post #5 of 17 (791 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

-------- Original Message --------
Subject: Re: [Cherokee] cherokee crashes on slowloris https check?
From: Stefan de Konink <stefan [at] konink>
To: Michiel van Es <info [at] pcintelligence>
Date: 07/07/2009 03:03 PM

> Michiel van Es wrote:
>> Hi,
>
>> I am running slowloris against my cherokee SSL website and could not
>> connect to my https website anymore.
>> Logfile shows:
>> Jul 7 14:22:59 pcintelw01 cherokee-worker: *** glibc detected ***
>> /usr/local/sbin/cherokee-worker: double free or co
>> rruption (!prev): 0xabcec248 ***
>
>
>> Is it a small bug in cherokee or something else?
>
> Pretty please do! You could help us even more by doing the following:
>
> Compile cherokee with -g (that is the default option). Run:
>
> gdb --args /path/to/cherokee-worker
> r
>
> [try to crash it again]
>
> if it crashes:
>
> bt

The output:

[root [at] pcintelw0 ~]# gdb --args /usr/local/sbin/cherokee-worker
GNU gdb Fedora (6.8-27.el5)
Copyright (C) 2008 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later
<http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.

There is NO WARRANTY, to the extent permitted by law. Type "show
copying"
and "show warranty" for details.

This GDB was configured as "i386-redhat-linux-gnu"...

(gdb) r

Starting program: /usr/local/sbin/cherokee-worker

[Thread debugging using libthread_db enabled]

[New Thread 0xb7f396c0 (LWP 2894)]

[07/06/2009 15:26:43.075] (critical) spawner.c:86 - Could initialize SHM
'/cherokee-spawner-2893': Operation not permitted

[New Thread 0xb7f38b90 (LWP 2897)]

[New Thread 0xb7537b90 (LWP 2898)]

[New Thread 0xb6b36b90 (LWP 2899)]

[New Thread 0xb6135b90 (LWP 2900)]

[New Thread 0xb5734b90 (LWP 2901)]

[New Thread 0xb4d33b90 (LWP 2902)]

[New Thread 0xb4332b90 (LWP 2903)]

[New Thread 0xb3931b90 (LWP 2904)]

[New Thread 0xb2f30b90 (LWP 2905)]

[New Thread 0xb252fb90 (LWP 2906)]

[New Thread 0xb1b2eb90 (LWP 2907)]

[New Thread 0xb112db90 (LWP 2908)]

[New Thread 0xb072cb90 (LWP 2909)]

[New Thread 0xafd2bb90 (LWP 2910)]

[New Thread 0xaf32ab90 (LWP 2911)]

[New Thread 0xae929b90 (LWP 2912)]

[New Thread 0xadf28b90 (LWP 2913)]

[New Thread 0xad527b90 (LWP 2914)]
[New Thread 0xacb26b90 (LWP 2915)]
Cherokee Web Server 0.99.21 (Jul 2 2009): Listening on ports
80.79.194.24:80,
80.79.194.24:443(TLS), 80.79.194.25:443(TLS), 80.79.194.25:80, with TLS
support via libssl, IPv6 enabled, using epoll, 2048 fds system limit, max.
1016 connections, caching I/O, 20 threads, 50 connections per thread,
standard scheduling policy
Detaching after fork from child process 2916.

Program received signal SIGPIPE, Broken pipe.
[Switching to Thread 0xb112db90 (LWP 2908)]
0x00675402 in __kernel_vsyscall ()
(gdb) bt
#0 0x00675402 in __kernel_vsyscall ()
#1 0x00b7344b in write () from /lib/libpthread.so.0
#2 0x0015bd01 in ?? () from /lib/libcrypto.so.6
#3 0x00159c83 in BIO_write () from /lib/libcrypto.so.6
#4 0x00327daf in ssl3_write_pending () from /lib/libssl.so.6
#5 0x003280ce in ?? () from /lib/libssl.so.6
#6 0x0032825e in ssl3_dispatch_alert () from /lib/libssl.so.6
#7 0x00327cba in ssl3_send_alert () from /lib/libssl.so.6
#8 0x00325b76 in ssl3_shutdown () from /lib/libssl.so.6
#9 0x003368dc in SSL_shutdown () from /lib/libssl.so.6
#10 0x00242d50 in _socket_close (cryp=0xabd3f510) at cryptor_libssl.c:524
#11 0x002cf79a in cherokee_cryptor_socket_close (cryp=0xabdaf460) at
cryptor.c:202
#12 0x002d10e7 in cherokee_socket_close (socket=0xabd3ee80) at socket.c:194
#13 0x00be1448 in cherokee_connection_clean_close (conn=0xabd3ee58) at
connection.c:368
#14 0x00be83e7 in purge_connection (thread=0x961cfe0, conn=0xabd3ee58)
at thread.c:332
#15 0x00be90cb in process_active_connections (thd=0x961cfe0) at
thread.c:1254
#16 0x00be9bb3 in cherokee_thread_step_MULTI_THREAD (thd=0x961cfe0,
dont_block=false) at thread.c:1749
#17 0x00bea3f0 in thread_routine (data=0x961cfe0) at thread.c:98
#18 0x00b6c49b in start_thread () from /lib/libpthread.so.0
#19 0x00aec42e in clone () from /lib/libc.so.6
(gdb)

>
> And paste the output the the bug track system or mailinglist.
>
>
> Stefan

Michiel
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

stefan at konink

Jul 7, 2009, 6:29 AM

Post #6 of 17 (799 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Michiel van Es wrote:
> So if it is default I don't have to recompile cherokee right?

Yes, the -g gives more information :) But without it should work too :)

> I don't have to start cherokee from within the init script? Just above
> commands?

Exactly.

>> And paste the output the the bug track system or mailinglist.
>
> Will do..

Thanks, as Alvaro pointed out, instead of gdb you can/should use
valgrind too.

Stefan
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEAREKAAYFAkpTTdIACgkQYH1+F2Rqwn3ASACeNEcBcyvDtVpBPl8MfNOvEFwI
LzkAn2kUwjcmUpL9NJBSN0mn9gjNREZA
=Watz
-----END PGP SIGNATURE-----
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

stefan at konink

Jul 7, 2009, 6:35 AM

Post #7 of 17 (797 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Michiel van Es wrote:
> Program received signal SIGPIPE, Broken pipe.
> [Switching to Thread 0xb112db90 (LWP 2908)]
> 0x00675402 in __kernel_vsyscall ()
> (gdb) bt
> #0 0x00675402 in __kernel_vsyscall ()
> #1 0x00b7344b in write () from /lib/libpthread.so.0
> #2 0x0015bd01 in ?? () from /lib/libcrypto.so.6
> #3 0x00159c83 in BIO_write () from /lib/libcrypto.so.6
> #4 0x00327daf in ssl3_write_pending () from /lib/libssl.so.6
> #5 0x003280ce in ?? () from /lib/libssl.so.6
> #6 0x0032825e in ssl3_dispatch_alert () from /lib/libssl.so.6
> #7 0x00327cba in ssl3_send_alert () from /lib/libssl.so.6
> #8 0x00325b76 in ssl3_shutdown () from /lib/libssl.so.6
> #9 0x003368dc in SSL_shutdown () from /lib/libssl.so.6
> #10 0x00242d50 in _socket_close (cryp=0xabd3f510) at cryptor_libssl.c:524
> #11 0x002cf79a in cherokee_cryptor_socket_close (cryp=0xabdaf460) at
> cryptor.c:202
> #12 0x002d10e7 in cherokee_socket_close (socket=0xabd3ee80) at socket.c:194
> #13 0x00be1448 in cherokee_connection_clean_close (conn=0xabd3ee58) at
> connection.c:368
> #14 0x00be83e7 in purge_connection (thread=0x961cfe0, conn=0xabd3ee58)
> at thread.c:332
> #15 0x00be90cb in process_active_connections (thd=0x961cfe0) at
> thread.c:1254
> #16 0x00be9bb3 in cherokee_thread_step_MULTI_THREAD (thd=0x961cfe0,
> dont_block=false) at thread.c:1749
> #17 0x00bea3f0 in thread_routine (data=0x961cfe0) at thread.c:98
> #18 0x00b6c49b in start_thread () from /lib/libpthread.so.0
> #19 0x00aec42e in clone () from /lib/libc.so.6
> (gdb)

Quite not yet ;) SIGPIPE is allowed ;)

handle SIGPIPE nostop noprint pass

Before the 'r'

Stefan
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEAREKAAYFAkpTTzMACgkQYH1+F2Rqwn1hhwCfYeGsfZdh/xMdRznHjWup6sNB
OWUAoIcXjEDDx5RRpcipaU7iBcED2brb
=KiY6
-----END PGP SIGNATURE-----
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

info at pcintelligence

Jul 7, 2009, 6:41 AM

Post #8 of 17 (804 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

-------- Original Message --------
Subject: Re: [Cherokee] cherokee crashes on slowloris https check?
From: Stefan de Konink <stefan [at] konink>
To: Michiel van Es <info [at] pcintelligence>
Date: 07/07/2009 03:35 PM

> Michiel van Es wrote:
>> Program received signal SIGPIPE, Broken pipe.
>> [Switching to Thread 0xb112db90 (LWP 2908)]
>> 0x00675402 in __kernel_vsyscall ()
>> (gdb) bt
>> #0 0x00675402 in __kernel_vsyscall ()
>> #1 0x00b7344b in write () from /lib/libpthread.so.0
>> #2 0x0015bd01 in ?? () from /lib/libcrypto.so.6
>> #3 0x00159c83 in BIO_write () from /lib/libcrypto.so.6
>> #4 0x00327daf in ssl3_write_pending () from /lib/libssl.so.6
>> #5 0x003280ce in ?? () from /lib/libssl.so.6
>> #6 0x0032825e in ssl3_dispatch_alert () from /lib/libssl.so.6
>> #7 0x00327cba in ssl3_send_alert () from /lib/libssl.so.6
>> #8 0x00325b76 in ssl3_shutdown () from /lib/libssl.so.6
>> #9 0x003368dc in SSL_shutdown () from /lib/libssl.so.6
>> #10 0x00242d50 in _socket_close (cryp=0xabd3f510) at cryptor_libssl.c:524
>> #11 0x002cf79a in cherokee_cryptor_socket_close (cryp=0xabdaf460) at
>> cryptor.c:202
>> #12 0x002d10e7 in cherokee_socket_close (socket=0xabd3ee80) at socket.c:194
>> #13 0x00be1448 in cherokee_connection_clean_close (conn=0xabd3ee58) at
>> connection.c:368
>> #14 0x00be83e7 in purge_connection (thread=0x961cfe0, conn=0xabd3ee58)
>> at thread.c:332
>> #15 0x00be90cb in process_active_connections (thd=0x961cfe0) at
>> thread.c:1254
>> #16 0x00be9bb3 in cherokee_thread_step_MULTI_THREAD (thd=0x961cfe0,
>> dont_block=false) at thread.c:1749
>> #17 0x00bea3f0 in thread_routine (data=0x961cfe0) at thread.c:98
>> #18 0x00b6c49b in start_thread () from /lib/libpthread.so.0
>> #19 0x00aec42e in clone () from /lib/libc.so.6
>> (gdb)
>
> Quite not yet ;) SIGPIPE is allowed ;)
>
> handle SIGPIPE nostop noprint pass
>
> Before the 'r'

Starting program: /usr/local/sbin/cherokee-worker

[Thread debugging using libthread_db enabled]

[New Thread 0xb7fe76c0 (LWP 3060)]

[07/06/2009 15:40:18.727] (critical) spawner.c:86 - Could initialize SHM
'/cherokee-spawner-3059': Operation not permitted

[New Thread 0xb7fe6b90 (LWP 3063)]

[New Thread 0xb75e5b90 (LWP 3064)]

[New Thread 0xb6be4b90 (LWP 3065)]

[New Thread 0xb61e3b90 (LWP 3066)]

[New Thread 0xb57e2b90 (LWP 3067)]

[New Thread 0xb4de1b90 (LWP 3068)]

[New Thread 0xb43e0b90 (LWP 3069)]

[New Thread 0xb39dfb90 (LWP 3070)]

[New Thread 0xb2fdeb90 (LWP 3071)]

[New Thread 0xb25ddb90 (LWP 3072)]

[New Thread 0xb1bdcb90 (LWP 3073)]

[New Thread 0xb11dbb90 (LWP 3074)]

[New Thread 0xb07dab90 (LWP 3075)]

[New Thread 0xafdd9b90 (LWP 3076)]

[New Thread 0xaf3d8b90 (LWP 3077)]

[New Thread 0xae9d7b90 (LWP 3078)]

[New Thread 0xadfd6b90 (LWP 3079)]

[New Thread 0xad5d5b90 (LWP 3080)]

[New Thread 0xacbd4b90 (LWP 3081)]

Cherokee Web Server 0.99.21 (Jul 2 2009): Listening on ports
80.79.194.24:80,
80.79.194.24:443(TLS), 80.79.194.25:443(TLS), 80.79.194.25:80, with TLS

support via libssl, IPv6 enabled, using epoll, 2048 fds system limit,
max.
1016 connections, caching I/O, 20 threads, 50 connections per thread,

standard scheduling policy

*** glibc detected *** /usr/local/sbin/cherokee-worker: double free or
corruption (!prev): 0xac0183e8 ***
======= Backtrace: =========

/lib/libc.so.6[0xa840f1]

/lib/libc.so.6(cfree+0x90)[0xa87bc0]

/lib/libcrypto.so.6(CRYPTO_free+0x3a)[0x2ab80a]

/lib/libcrypto.so.6(ERR_clear_error+0x7a)[0x2a898a]

/lib/libssl.so.6(ssl3_accept+0x4e)[0x123fae]

/lib/libssl.so.6(SSL_accept+0x2a)[0x139dba]

/usr/local/lib/cherokee/libplugin_libssl.so[0xc93ebb]

/usr/local/lib/libcherokee-base.so.0(cherokee_cryptor_socket_init_tls+0x28)[0xf4a7c8]

/usr/local/lib/libcherokee-base.so.0(cherokee_socket_init_tls+0x43)[0xf4c163]

/usr/local/lib/libcherokee-server.so.0[0xd0f603]

/usr/local/lib/libcherokee-server.so.0(cherokee_thread_step_MULTI_THREAD+0x133)[0xd0fbb3]

/usr/local/lib/libcherokee-server.so.0[0xd103f0]

/lib/libpthread.so.0[0xb6c49b]

/lib/libc.so.6(clone+0x5e)[0xaec42e]

======= Memory map: ========

00110000-00153000 r-xp 00000000 09:02 584659 /lib/libssl.so.0.9.8e

00153000-00157000 rwxp 00042000 09:02 584659 /lib/libssl.so.0.9.8e

00157000-0017c000 r-xp 00000000 09:02 1357648
/usr/lib/libk5crypto.so.3.1
0017c000-0017d000 rwxp 00025000 09:02 1357648
/usr/lib/libk5crypto.so.3.1
0017d000-0017f000 r-xp 00000000 09:02 585182 /lib/libkeyutils-1.2.so

0017f000-00180000 rwxp 00001000 09:02 585182 /lib/libkeyutils-1.2.so

00180000-001bb000 r-xp 00000000 09:02 584066 /lib/libsepol.so.1

001bb000-001bc000 rwxp 0003a000 09:02 584066 /lib/libsepol.so.1

001bc000-001c6000 rwxp 001bc000 00:00 0

001c6000-001c8000 r-xp 00000000 09:02 388276
/usr/local/lib/cherokee/libplugin_ncsa.so
001c8000-001c9000 rwxp 00001000 09:02 388276
/usr/local/lib/cherokee/libplugin_ncsa.so
001c9000-001cc000 r-xp 00000000 09:02 388207
/usr/local/lib/cherokee/libplugin_file.so
001cc000-001cd000 rwxp 00002000 09:02 388207
/usr/local/lib/cherokee/libplugin_file.so
001cd000-001ce000 r-xp 00000000 09:02 388309
/usr/local/lib/cherokee/libplugin_round_robin.so
001ce000-001cf000 rwxp 00000000 09:02 388309
/usr/local/lib/cherokee/libplugin_round_robin.so
001cf000-001d0000 r-xp 00000000 09:02 388162
/usr/local/lib/cherokee/libplugin_directory.so
001d0000-001d1000 rwxp 00000000 09:02 388162
/usr/local/lib/cherokee/libplugin_directory.so
001d1000-001d5000 r-xp 00000000 09:02 388222
/usr/local/lib/cherokee/libplugin_dirlist.so
001d5000-001d6000 rwxp 00003000 09:02 388222
/usr/local/lib/cherokee/libplugin_dirlist.so
001d8000-001d9000 r-xp 001d8000 00:00 0 [vdso]
001d9000-00302000 r-xp 00000000 09:02 585184 /lib/libcrypto.so.0.9.8e
00302000-00315000 rwxp 00129000 09:02 585184 /lib/libcrypto.so.0.9.8e
00315000-00319000 rwxp 00315000 00:00 0
00319000-0031a000 r-xp 00000000 09:02 388164
/usr/local/lib/cherokee/libplugin_extensions.so
0031a000-0031b000 rwxp 00000000 09:02 388164
/usr/local/lib/cherokee/libplugin_extensions.so
0031b000-00323000 r-xp 00000000 09:02 388216
/usr/local/lib/cherokee/libplugin_server_info.so
00323000-00324000 rwxp 00007000 09:02 388216
/usr/local/lib/cherokee/libplugin_server_info.so
00412000-00418000 r-xp 00000000 09:02 388228
/usr/local/lib/cherokee/libplugin_fcgi.so
00418000-00419000 rwxp 00005000 09:02 388228
/usr/local/lib/cherokee/libplugin_fcgi.so
00443000-0045f000 r-xp 00000000 09:02 581830 /lib/libpcre.so.0.0.1
0045f000-00460000 rwxp 0001c000 09:02 581830 /lib/libpcre.so.0.0.1
004fe000-00500000 r-xp 00000000 09:02 388264
/usr/local/lib/cherokee/libplugin_common.so
00500000-00501000 rwxp 00001000 09:02 388264
/usr/local/lib/cherokee/libplugin_common.so
005a7000-005a8000 r-xp 00000000 09:02 388282
/usr/local/lib/cherokee/libplugin_combined.so
005a8000-005a9000 rwxp 00000000 09:02 388282
/usr/local/lib/cherokee/libplugin_combined.so
0060c000-0060d000 r-xp 00000000 09:02 388198
/usr/local/lib/cherokee/libplugin_wildcard.so
0060d000-0060e000 rwxp 00000000 09:02 388198
/usr/local/lib/cherokee/libplugin_wildcard.so
00682000-00684000 r-xp 00000000 09:02 388234
/usr/local/lib/cherokee/libplugin_redir.so
00684000-00685000 rwxp 00001000 09:02 388234
/usr/local/lib/cherokee/libplugin
Program received signal SIGABRT, Aborted.
[Switching to Thread 0xb57e2b90 (LWP 3067)]
0x001d8402 in __kernel_vsyscall ()
(gdb) bt
#0 0x001d8402 in __kernel_vsyscall ()
#1 0x00a43d80 in raise () from /lib/libc.so.6
#2 0x00a45691 in abort () from /lib/libc.so.6
#3 0x00a7c24b in __libc_message () from /lib/libc.so.6
#4 0x00a840f1 in _int_free () from /lib/libc.so.6
#5 0x00a87bc0 in free () from /lib/libc.so.6
#6 0x002ab80a in CRYPTO_free () from /lib/libcrypto.so.6
#7 0x002a898a in ERR_clear_error () from /lib/libcrypto.so.6
#8 0x00123fae in ssl3_accept () from /lib/libssl.so.6
#9 0x00139dba in SSL_accept () from /lib/libssl.so.6
#10 0x00c93ebb in _socket_init_tls (cryp=0xa21a738, sock=0xa0f0050,
vsrv=0x9c841d0) at cryptor_libssl.c:496
#11 0x00f4a7c8 in cherokee_cryptor_socket_init_tls (cryp=0xbfb,
sock=0xa0f0050, vsrv=0x9c841d0) at cryptor.c:193
#12 0x00f4c163 in cherokee_socket_init_tls (socket=0xa0f0050,
vserver=0x9c841d0) at socket.c:170
#13 0x00d0f603 in process_active_connections (thd=0x9c67fb8) at thread.c:684
#14 0x00d0fbb3 in cherokee_thread_step_MULTI_THREAD (thd=0x9c67fb8,
dont_block=false) at thread.c:1749
#15 0x00d103f0 in thread_routine (data=0x9c67fb8) at thread.c:98
#16 0x00b6c49b in start_thread () from /lib/libpthread.so.0
#17 0x00aec42e in clone () from /lib/libc.so.6
(gdb)

>
>
> Stefan

Michiel
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

info at pcintelligence

Jul 7, 2009, 6:42 AM

Post #9 of 17 (797 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

gwolf at gwolf

Jul 7, 2009, 6:57 AM

Post #10 of 17 (797 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

Michiel van Es dijo [Tue, Jul 07, 2009 at 03:16:40PM +0200]:
> > Michiel van Es wrote:
> >> Hi,
> >
> >> I am running slowloris against my cherokee SSL website and could not
> >> connect to my https website anymore.
> >> Logfile shows:
> >> Jul 7 14:22:59 pcintelw01 cherokee-worker: *** glibc detected ***
> >> /usr/local/sbin/cherokee-worker: double free or co
> >> rruption (!prev): 0xabcec248 ***

Which version of Cherokee are you running, Ubuntu's provided or the
latest (via Leonel's PPA)?

> >> Is it a small bug in cherokee or something else?
> >
> > Pretty please do! You could help us even more by doing the following:
> >
> > Compile cherokee with -g (that is the default option).
>
> So if it is default I don't have to recompile cherokee right?

Your Cherokee is built with the following flags:
./configure --host=$(DEB_HOST_GNU_TYPE) \
--build=$(DEB_BUILD_GNU_TYPE) \
--enable-os-string="Debian GNU/Linux" \
--enable-pthreads \
--prefix=/usr \
--localstatedir=/var \
--mandir=\$${prefix}/share/man \
--infodir=\$${prefix}/share/info \
--sysconfdir=/etc \
--docdir=/usr/share/doc/cherokee-doc \
--with-wwwroot=/var/www \
--with-included-gettext

We are not explicitly unsetting -g (I am just quoting this so that the
developers can assert it does not clash with anything we specify), so
you won't have to recompile. Even if you did, I can provide
custom-built packates for you if you so need.

> I don't have to start cherokee from within the init script? Just above
> commands?

Starting from the init script is roughly equivalent to running
/usr/sbin/cherokee; it specifies some extra invocation options (via
start-stop-daemon) to aid the init system (i.e. setting pidfiles,
reporting results)

--
Gunnar Wolf • gwolf [at] gwolf • (+52-55)5623-0154 / 1451-2244
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

info at pcintelligence

Jul 7, 2009, 6:59 AM

Post #11 of 17 (798 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

-------- Original Message --------
Subject: Re: [Cherokee] cherokee crashes on slowloris https check?
From: Gunnar Wolf <gwolf [at] gwolf>
To: Michiel van Es <info [at] pcintelligence>
Date: 07/07/2009 03:57 PM

> Michiel van Es dijo [Tue, Jul 07, 2009 at 03:16:40PM +0200]:
>>> Michiel van Es wrote:
>>>> Hi,
>>>> I am running slowloris against my cherokee SSL website and could not
>>>> connect to my https website anymore.
>>>> Logfile shows:
>>>> Jul 7 14:22:59 pcintelw01 cherokee-worker: *** glibc detected ***
>>>> /usr/local/sbin/cherokee-worker: double free or co
>>>> rruption (!prev): 0xabcec248 ***
>
> Which version of Cherokee are you running, Ubuntu's provided or the
> latest (via Leonel's PPA)?

No I use the source:

Cherokee Web Server 0.99.21 (Jul 2 2009): Listening on ports
80.79.194.24:80,
80.79.194.24:443(TLS), 80.79.194.25:443(TLS), 80.79.194.25:80, with TLS

support via libssl, IPv6 enabled, using epoll, 2048 fds system limit,
max.
1016 connections, caching I/O, 20 threads, 50 connections per thread,

>
>>>> Is it a small bug in cherokee or something else?
>>> Pretty please do! You could help us even more by doing the following:
>>>
>>> Compile cherokee with -g (that is the default option).
>> So if it is default I don't have to recompile cherokee right?
>
> Your Cherokee is built with the following flags:
> ./configure --host=$(DEB_HOST_GNU_TYPE) \
> --build=$(DEB_BUILD_GNU_TYPE) \
> --enable-os-string="Debian GNU/Linux" \
> --enable-pthreads \
> --prefix=/usr \
> --localstatedir=/var \
> --mandir=\$${prefix}/share/man \
> --infodir=\$${prefix}/share/info \
> --sysconfdir=/etc \
> --docdir=/usr/share/doc/cherokee-doc \
> --with-wwwroot=/var/www \
> --with-included-gettext
>
> We are not explicitly unsetting -g (I am just quoting this so that the
> developers can assert it does not clash with anything we specify), so
> you won't have to recompile. Even if you did, I can provide
> custom-built packates for you if you so need.
>
>> I don't have to start cherokee from within the init script? Just above
>> commands?
>
> Starting from the init script is roughly equivalent to running
> /usr/sbin/cherokee; it specifies some extra invocation options (via
> start-stop-daemon) to aid the init system (i.e. setting pidfiles,
> reporting results)
>
>
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

stefan at konink

Jul 7, 2009, 6:59 AM

Post #12 of 17 (798 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Michiel van Es wrote:
> No I use the source:
>
> Cherokee Web Server 0.99.21 (Jul 2 2009): Listening on ports
> 80.79.194.24:80,
> 80.79.194.24:443(TLS), 80.79.194.25:443(TLS), 80.79.194.25:80, with TLS
>
> support via libssl, IPv6 enabled, using epoll, 2048 fds system limit,
> max.
> 1016 connections, caching I/O, 20 threads, 50 connections per thread,

OpenSSL version?

Stefan
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEAREKAAYFAkpTVN4ACgkQYH1+F2Rqwn3s+QCaA5dND5g9FyMGO+eXoeg3fJQF
zfsAn3i9Ofoi8n2wC/+wYAzRVoPeY6D8
=E8eM
-----END PGP SIGNATURE-----
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

info at pcintelligence

Jul 7, 2009, 7:00 AM

Post #13 of 17 (797 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

-------- Original Message --------
Subject: Re: [Cherokee] cherokee crashes on slowloris https check?
From: Stefan de Konink <stefan [at] konink>
To: Michiel van Es <info [at] pcintelligence>
Date: 07/07/2009 03:59 PM

> Michiel van Es wrote:
>> No I use the source:
>
>> Cherokee Web Server 0.99.21 (Jul 2 2009): Listening on ports
>> 80.79.194.24:80,
>> 80.79.194.24:443(TLS), 80.79.194.25:443(TLS), 80.79.194.25:80, with TLS
>
>> support via libssl, IPv6 enabled, using epoll, 2048 fds system limit,
>> max.
>> 1016 connections, caching I/O, 20 threads, 50 connections per thread,
>
> OpenSSL version?

Default openssl version that comes with CentOS :

[root [at] pcintelw0 wp]# rpm -qa | grep openssl
openssl-0.9.8e-7.el5

>
>
> Stefan
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

stefan at konink

Jul 7, 2009, 7:31 AM

Post #14 of 17 (801 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Michiel van Es wrote:
> Other question: you guys don't get an crash when running slowloris :
>
> ./slowloris.pl -dns *website* -port 443 -timeout 30 -num 500 -https
Nope

Stefan
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEAREKAAYFAkpTXCsACgkQYH1+F2Rqwn0bOACffbOK2pPScdvvyjYiOllwAgmt
A2gAnAqILYU0xxwwur4wZVILZZ78VlT4
=CxwL
-----END PGP SIGNATURE-----
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

info at pcintelligence

Jul 7, 2009, 2:40 PM

Post #15 of 17 (802 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

Stefan de Konink wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
>
> Michiel van Es wrote:
>> Other question: you guys don't get an crash when running slowloris :
>>
>> ./slowloris.pl -dns *website* -port 443 -timeout 30 -num 500 -https
> Nope
>
Try it with a Red Hat system or an older openssl library..(if the
OpenSSL version is the problem).
I see that most Linux distributions still have a 0.9.8* version and not
a 0.9.9 or 1.0 version of Openssl on board.
But I am not sure that it has anything to do with the OpenSSL version..
>
> Stefan

Michiel
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2.0.12 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
>
> iEYEAREKAAYFAkpTXCsACgkQYH1+F2Rqwn0bOACffbOK2pPScdvvyjYiOllwAgmt
> A2gAnAqILYU0xxwwur4wZVILZZ78VlT4
> =CxwL
> -----END PGP SIGNATURE-----
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

stefan at konink

Jul 7, 2009, 2:51 PM

Post #16 of 17 (793 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Michiel van Es wrote:
>> Try it with a Red Hat system or an older openssl library..(if the
>> OpenSSL version is the problem).
>> I see that most Linux distributions still have a 0.9.8* version and not
>> a 0.9.9 or 1.0 version of Openssl on board.
>> But I am not sure that it has anything to do with the OpenSSL version..

I am using 0.9.8k.

Stefan
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEAREKAAYFAkpTw3cACgkQYH1+F2Rqwn38zACeKeNPgES6QNpRvViZf5HNomg4
2oAAnjEUqK7u5cqW0eohZb1E68K0reGS
=ymwg
-----END PGP SIGNATURE-----
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

info at pcintelligence

Jul 7, 2009, 3:05 PM

Post #17 of 17 (795 views)
Permalink

Re: cherokee crashes on slowloris https check? [In reply to]

Stefan de Konink wrote:
> Michiel van Es wrote:
>>> Try it with a Red Hat system or an older openssl library..(if the
>>> OpenSSL version is the problem).
>>> I see that most Linux distributions still have a 0.9.8* version and not
>>> a 0.9.9 or 1.0 version of Openssl on board.
>>> But I am not sure that it has anything to do with the OpenSSL version..
>
> I am using 0.9.8k.
>
Ok..well I mentioned the crash and hope you guys can do something with
my crash dump.
Perhaps it is a RH/source problem?
>
> Stefan
Michiel
_______________________________________________
Cherokee mailing list
Cherokee [at] lists
http://lists.octality.com/listinfo/cherokee

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads