[Pidgin] #4680: Pidgin segfaults on msn connect (SSL Certificate Error)

Pidgin trac at pidgin.im
Mon Jul 14 22:02:27 EDT 2008


#4680: Pidgin segfaults on msn connect (SSL Certificate Error)
----------------------+-----------------------------------------------------
  Reporter:  erythro  |       Owner:  khc                                                
      Type:  defect   |      Status:  closed                                             
  Priority:  minor    |   Milestone:                                                     
 Component:  MSN      |     Version:  2.3.1                                              
Resolution:           |    Keywords:  crash, segfault, msnp14, ssl certificate error, msn
   Pending:  0        |  
----------------------+-----------------------------------------------------
Comment (by jjsch):

 Hi, I have a problem related with this bug using pidgin 2.5 from the mtn
 database.

 Backtrace

 Program received signal SIGSEGV, Segmentation fault.
 [Switching to Thread 0xb6fa9720 (LWP 21678)]
 0xb6d7b08a in msn_oim_request_cb (request=0x8763fd8, response=0x0,
 req_data=0x85c3ea8) at oim.c:141
 141             fault = xmlnode_get_child(response->xml, "Body/Fault");
 (gdb) bt full
 #0  0xb6d7b08a in msn_oim_request_cb (request=0x8763fd8, response=0x0,
 req_data=0x85c3ea8) at oim.c:141
         fault = <value optimized out>
         faultcode = <value optimized out>
 #1  0xb6d81158 in msn_soap_connection_destroy_foreach_cb (item=0x858d0b0,
 data=0x8763fe8) at soap.c:617
         req = (MsnSoapRequest *) 0x858d0b0
 #2  0xb76db3b1 in g_queue_foreach () from /usr/lib/libglib-2.0.so.0
 No symbol table info available.
 #3  0xb6d815d5 in msn_soap_connection_destroy (conn=0x8763fe8) at
 soap.c:632
 No locals.
 #4  0xb76bdbd4 in ?? () from /usr/lib/libglib-2.0.so.0
 No symbol table info available.
 #5  0xb76be2f8 in ?? () from /usr/lib/libglib-2.0.so.0
 No symbol table info available.
 #6  0xb6d822b0 in msn_soap_error_cb (ssl=0x8760230,
 error=PURPLE_SSL_CERTIFICATE_INVALID, data=0x8763fe8) at soap.c:180
 No locals.
 #7  0xb6d5774b in ssl_gnutls_verified_cb (st=PURPLE_CERTIFICATE_INVALID,
 userdata=0x87503c0) at ssl-gnutls.c:99
 No locals.
 #8  0xb75f2949 in purple_certificate_verify_complete (vrq=0x858f430,
 st=137773096) at certificate.c:105
         __PRETTY_FUNCTION__ = "purple_certificate_verify_complete"
 #9  0xb75f38bc in x509_tls_cached_unknown_peer (vrq=0x858f430) at
 certificate.c:1417
         ca = (PurpleCertificatePool *) 0xb768cae0
         tls_peers = <value optimized out>
         end_crt = (PurpleCertificate *) 0x858cd00
 ---Type <return> to continue, or q <return> to quit---q
 Quit
 (gdb) quit

 Debug information

 (22:54:30) gnutls: Handshake complete
 (22:54:30) gnutls/x509: Key print:
 87:e7:54:cd:fc:e1:ab:f3:d7:4c:2d:40:a3:e1:c0:3d:92:32:28:d7
 (22:54:30) gnutls: Peer provided 1 certs
 (22:54:30) gnutls: Lvl 0 SHA1 fingerprint:
 87:e7:54:cd:fc:e1:ab:f3:d7:4c:2d:40:a3:e1:c0:3d:92:32:28:d7
 (22:54:30) gnutls: Serial: 38:4f:67:5a:00:04:00:00:a3:90
 (22:54:30) gnutls: Cert DN: C=US,ST=California,L=Mountain
 View,O=Microsoft,OU=MSN Hotmail,CN=rsi.hotmail.com
 (22:54:30) gnutls: Cert Issuer DN:
 DC=com,DC=microsoft,DC=corp,DC=redmond,CN=Microsoft Secure Server
 Authority
 (22:54:30) certificate/x509/tls_cached: Starting verify for
 rsi.hotmail.com
 (22:54:30) certificate/x509/tls_cached: Checking for cached cert...
 (22:54:30) certificate/x509/tls_cached: ...Not in cache
 (22:54:30) gnutls/x509: Certificate for C=US,ST=California,L=Mountain
 View,O=Microsoft,OU=MSN Hotmail,CN=rsi.hotmail.com claims to be issued by
 DC=com,DC=microsoft,DC=corp,DC=redmond,CN=Microsoft Secure Server
 Authority, but the certificate for C=US,ST=California,L=Mountain
 View,O=Microsoft,OU=MSN Hotmail,CN=rsi.hotmail.com does not match.
 (22:54:30) certificate: Checking signature chain for
 uid=C=US,ST=California,L=Mountain View,O=Microsoft,OU=MSN
 Hotmail,CN=rsi.hotmail.com
 (22:54:30) certificate: ...Singleton. We'll say it's valid.
 (22:54:30) certificate/x509/tls_cached: Checking for a CA with
 DN=DC=com,DC=microsoft,DC=corp,DC=redmond,CN=Microsoft Secure Server
 Authority
 (22:54:30) gnutls: Attempting to load X.509 certificate from
 /usr/local/share/purple/ca-certs/GTE_CyberTrust_Global_Root.pem
 (22:54:30) certificate/x509/ca: Loaded /usr/local/share/purple/ca-
 certs/GTE_CyberTrust_Global_Root.pem
 (22:54:30) gnutls: Attempting to load X.509 certificate from
 /usr/local/share/purple/ca-certs/Microsoft_Secure_Server_Authority.pem
 (22:54:30) certificate/x509/ca: Loaded /usr/local/share/purple/ca-
 certs/Microsoft_Secure_Server_Authority.pem
 (22:54:30) gnutls: Attempting to load X.509 certificate from
 /usr/local/share/purple/ca-certs/Verisign_RSA_Secure_Server_CA.pem
 (22:54:30) certificate/x509/ca: Loaded /usr/local/share/purple/ca-
 certs/Verisign_RSA_Secure_Server_CA.pem
 (22:54:30) gnutls: Attempting to load X.509 certificate from
 /usr/local/share/purple/ca-certs/Verisign_Class3_Primary_CA.pem
 (22:54:30) certificate/x509/ca: Loaded /usr/local/share/purple/ca-
 certs/Verisign_Class3_Primary_CA.pem
 (22:54:30) gnutls: Attempting to load X.509 certificate from
 /usr/local/share/purple/ca-certs/Equifax_Secure_CA.pem
 (22:54:30) certificate/x509/ca: Loaded /usr/local/share/purple/ca-
 certs/Equifax_Secure_CA.pem
 (22:54:30) gnutls: Attempting to load X.509 certificate from
 /usr/local/share/purple/ca-certs/StartCom_Free_SSL_CA.pem
 (22:54:30) certificate/x509/ca: Loaded /usr/local/share/purple/ca-
 certs/StartCom_Free_SSL_CA.pem
 (22:54:30) gnutls: Attempting to load X.509 certificate from
 /usr/local/share/purple/ca-certs/CAcert_Root.pem
 (22:54:30) certificate/x509/ca: Loaded /usr/local/share/purple/ca-
 certs/CAcert_Root.pem
 (22:54:30) gnutls: Attempting to load X.509 certificate from
 /usr/local/share/purple/ca-certs/CAcert_Class3.pem
 (22:54:30) certificate/x509/ca: Loaded /usr/local/share/purple/ca-
 certs/CAcert_Class3.pem
 (22:54:30) certificate/x509/ca: Lazy init completed.
 (22:54:30) gnutls/x509: Bad signature for
 DC=com,DC=microsoft,DC=corp,DC=redmond,CN=Microsoft Secure Server
 Authority on C=US,ST=California,L=Mountain View,O=Microsoft,OU=MSN
 Hotmail,CN=rsi.hotmail.com
 (22:54:30) certificate: Failed to verify certificate for rsi.hotmail.com

-- 
Ticket URL: <http://developer.pidgin.im/ticket/4680#comment:5>
Pidgin <http://pidgin.im>
Pidgin


More information about the Tracker mailing list