OpenSolaris

Printable Version Enter a New Search
Bug ID 6614159
Synopsis kstrgetmsg()/struiocopyout() are greedy monsters lurking for raw kssl data
State 10-Fix Delivered (Fix available in build)
Category:Subcategory kernel_ssl:other
Keywords rtiq_reviewed
Responsible Engineer Vladimir Kotal
Reported Against
Duplicate Of
Introduced In solaris_nevada
Commit to Fix snv_82
Fixed In snv_82
Release Fixed solaris_nevada(snv_82) , solaris_10u6(s10u6_01) (Bug ID:2154164)
Related Bugs 4931229 , 6553672 , 6553671 , 6627530
Submit Date 8-October-2007
Last Update Date 31-January-2008
Description 
KSSL ingress data processing could sometimes end up with corrupted data. This is externalized by SSL alerts sent by KSSL proxy and kstat kssl_internal_errors counter being incremented.

DEBUG kssl kernel module produces e.g. the following warnings in such case:

Oct  8 09:15:05 pickup kssl: WARNING: kssl_handle_any_record: msg MAC mismatch
Oct  8 09:15:05 pickup kssl: WARNING: sending an alert 2 20 from fffffffff3e87b63
Work Around 
N/A
Comments 
N/A