Hi, I am using OpenSSL version 0.9.6b on NT I am getting a crash sometimes in my SSL server application when the connection is broken between the server and the client. The crash occurs very rarely and the stack is almost the same. The crash is happening in SSL_free->ssl_cert_free->dh_free. Two of the stack dumps for the crash are shown below. *************************************** 0077427B 03A7FA94 __sbh_free_block+B2 0076D29C 03A7FAA4 free+23 00674D08 03A7FAB0 CRYPTO_free+25 Line 271 0066CFD6 03A7FAC0 BN_clear_free+46 Line 268 0066AA82 03A7FAD0 DH_free+115 Line 160 0067516F 03A7FAE0 ssl_cert_free+4C Line 322 006674A4 03A7FAF0 SSL_free+174 Line 378 ********************************************** Call stack: Address Frame 77F64D8A 02E2FB80 RtlFreeHeap+2A 00761C7F 02E2FB94 free+46 00672A18 02E2FBA0 CRYPTO_free+25 Line 271 0066AD46 02E2FBAC BN_free+2B Line 280 0068C9F4 02E2FBB8 BN_MONT_CTX_free+17 Line 266 0067EFC4 02E2FBC4 DH_OpenSSL+3F2 Line 211 006686D0 02E2FBD4 DH_free+53 Line 150 00672E7F 02E2FBE4 ssl_cert_free+4C Line 322 006651B4 02E2FBF4 SSL_free+174 Line 378 ******************************************* I have been using this application for long time now and it can run for over 3 days wihout crashing with lots of connections breaks and establishements happening suceesfully. This crash happens very occasionaly and is hard to debug. I have a single-threaded server which connects to multiple clients (clients use Java SSL jsse). Please let me know if anybody else has seen this problem or there is some problem in the way I am using SSL structures. In my application, the SSL_CTX is defined only once for the server and is passed as a parameter to all new SSL connections. DH is used for key generation and exchange. No certificates are being used. Thanks, Sudhi Agarwal
______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
