PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-16 12:49:02 +00:00
Code Issues Projects Releases Wiki Activity

Todo about an OpenSSL crash I just ran into.

Browse Source
This commit is contained in:
david
2011-06-21 05:57:02 +00:00
parent 3b202e4597
commit c1dc20ac64
1 changed files with 15 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
todo/nmap.txt
View File

@@ -35,6 +35,21 @@ o Integrate new service fingerprint submissions (we have about 1,400
o [Ncat] Add new certificate bundle (ca-bundle.crt) since the current o [Ncat] Add new certificate bundle (ca-bundle.crt) since the current
one is out of date. See http://seclists.org/nmap-dev/2011/q2/641. one is out of date. See http://seclists.org/nmap-dev/2011/q2/641.
o [Ncat] Solve a crash that only happens on Windows when connecting
with SSL and -vvv, for example
ncat --ssl -vvv www.amazon.com 443
The crash happens in the function verify_callback, when the function
X509_NAME_print_ex_fp is called. Just commenting those two calls
avoid the problem. By trying different combinations of debug print
statements, I once got the message
OPENSSL_Uplink(10109000,08): no OPENSSL_Applink
This refers to a Windows dynamic linking issue:
http://www.openssl.org/support/faq.html#PROG2
However I tried both including <openssl/applink.c> and changing the
linker mode to /MD, and neither changed the behavior.
Changing the flags from XN_FLAG_ONELINE to 0 seems to make the
problem go away.
==Things needed for next STABLE release go ABOVE THIS LINE== ==Things needed for next STABLE release go ABOVE THIS LINE==
o We should document Ron's sample script o We should document Ron's sample script