[Pkg-openssl-devel] Bug#671672: openssl s_client -starttls xmpp burn cpu with broken server

Jörg Sommer joerg at alea.gnuu.de
Sat May 5 18:58:45 UTC 2012 

Package: openssl
Version: 1.0.1b-1
Severity: normal

Hi,

the following command never stopps. I have to press ^C to come back to
the shell prompt.

% openssl s_client -debug -connect gmx.de:xmpp-client -starttls xmpp </dev/null |head -n50
CONNECTED(00000003)
write to 0x101aac70 [-0x4079a834] (111 bytes => 111 (0x6F))
0000 - 3c 73 74 72 65 61 6d 3a-73 74 72 65 61 6d 20 78   <stream:stream x
0010 - 6d 6c 6e 73 3a 73 74 72-65 61 6d 3d 27 68 74 74   mlns:stream='htt
0020 - 70 3a 2f 2f 65 74 68 65-72 78 2e 6a 61 62 62 65   p://etherx.jabbe
0030 - 72 2e 6f 72 67 2f 73 74-72 65 61 6d 73 27 20 78   r.org/streams' x
0040 - 6d 6c 6e 73 3d 27 6a 61-62 62 65 72 3a 63 6c 69   mlns='jabber:cli
0050 - 65 6e 74 27 20 74 6f 3d-27 67 6d 78 2e 64 65 27   ent' to='gmx.de'
0060 - 20 76 65 72 73 69 6f 6e-3d 27 31 2e 30 27 3e       version='1.0'>
read from 0x101aac70 [0x101a31c0] (8192 bytes => 259 (0x103))
0000 - 3c 3f 78 6d 6c 20 76 65-72 73 69 6f 6e 3d 27 31   <?xml version='1
0010 - 2e 30 27 3f 3e 3c 73 74-72 65 61 6d 3a 73 74 72   .0'?><stream:str
0020 - 65 61 6d 20 78 6d 6c 6e-73 3d 27 6a 61 62 62 65   eam xmlns='jabbe
0030 - 72 3a 63 6c 69 65 6e 74-27 20 78 6d 6c 6e 73 3a   r:client' xmlns:
0040 - 73 74 72 65 61 6d 3d 27-68 74 74 70 3a 2f 2f 65   stream='http://e
0050 - 74 68 65 72 78 2e 6a 61-62 62 65 72 2e 6f 72 67   therx.jabber.org
0060 - 2f 73 74 72 65 61 6d 73-27 20 69 64 3d 27 31 34   /streams' id='14
0070 - 39 35 32 31 33 30 32 37-27 20 66 72 6f 6d 3d 27   95213027' from='
0080 - 67 6d 78 2d 67 6d 62 68-2e 64 65 27 20 78 6d 6c   gmx-gmbh.de' xml
0090 - 3a 6c 61 6e 67 3d 27 65-6e 27 3e 3c 73 74 72 65   :lang='en'><stre
00a0 - 61 6d 3a 65 72 72 6f 72-3e 3c 68 6f 73 74 2d 75   am:error><host-u
00b0 - 6e 6b 6e 6f 77 6e 20 78-6d 6c 6e 73 3d 27 75 72   nknown xmlns='ur
00c0 - 6e 3a 69 65 74 66 3a 70-61 72 61 6d 73 3a 78 6d   n:ietf:params:xm
00d0 - 6c 3a 6e 73 3a 78 6d 70-70 2d 73 74 72 65 61 6d   l:ns:xmpp-stream
00e0 - 73 27 2f 3e 3c 2f 73 74-72 65 61 6d 3a 65 72 72   s'/></stream:err
00f0 - 6f 72 3e 3c 2f 73 74 72-65 61 6d 3a 73 74 72 65   or></stream:stre
0100 - 61 6d 3e                                          am>
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
read from 0x101aac70 [0x101a31c0] (8192 bytes => 0 (0x0))
^C

Bye, Jörg.

-- System Information:
Debian Release: unstable/experimental
  APT prefers unstable
  APT policy: (900, 'unstable'), (700, 'experimental')
Architecture: powerpc (ppc)

Kernel: Linux 3.3.0-rc5-04520-g8d233c0
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages openssl depends on:
ii  libc6        2.13-31
ii  libssl1.0.0  1.0.1b-1
ii  zlib1g       1:1.2.7.dfsg-1

openssl recommends no packages.

Versions of packages openssl suggests:
ii  ca-certificates  20120212

-- no debconf information
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: Digital signature http://en.wikipedia.org/wiki/OpenPGP
URL: <http://lists.alioth.debian.org/pipermail/pkg-openssl-devel/attachments/20120505/8db59b6c/attachment.pgp>

More information about the Pkg-openssl-devel mailing list