[Pkg-openssl-devel] Bug#670581: Bug#670581: openssl: ntpd segfaults with error 4 in libcrypto.so.0.9.8 on Debian squeeze
Kurt Roeckx
kurt at roeckx.be
Tue May 1 17:05:51 UTC 2012
reassign 670581 src:ntp 1:4.2.6.p2+dfsg-1
thanks
On Tue, May 01, 2012 at 09:52:06AM -0700, Andris Kalnozols wrote:
> On 4/30/2012 11:54 PM, Andris Kalnozols wrote:
>
> >However, I can't find where the ntpd program ever calls ssl_init()
> >or the INIT_SSL() macro. So I'm betting that this problem will go
> >away once I find the proper place to call this important routine.
>
> I took a look at the latest development code base (ntp-dev-4.2.7p275)
> from ntp.org and it appears that the missing SSL initialization call
> is now present. Backporting the fix to the proper location gives this
> for the version of NTP (4.2.6p2) for Debian squeeze:
>
> >--- ntpd.c.orig 2012-04-22 00:33:29.000000000 -0700
> >+++ ntpd.c 2012-05-01 00:04:55.770602014 -0700
> >@@ -836,10 +836,11 @@
> > /*
> > * Call the init_ routines to initialize the data structures.
> > *
> > * Exactly what command-line options are we expecting here?
> > */
> >+ INIT_SSL();
> > init_auth();
> > init_util();
> > init_restrict();
> > init_mon();
> > init_timer();
>
> This does indeed fix the problem.
Thanks for looking into this.
> I will notify the Debian maintainers for NTP of this important patch.
I've just reassign it to the proper package then.
PS: I'm also one of the ntp maintainers.
Kurt
More information about the Pkg-openssl-devel
mailing list