Maintained by: NLnet Labs

[Unbound-users] Issues with Unbound 1.4.18

Phil Pennock
Wed Sep 5 06:03:48 CEST 2012


On 2012-09-04 at 11:01 +0100, Phil Davies wrote:
> I managed to get unbound to generate a core dump. The back trace 
> suggests a possible issue with DNSSEC and OpenSSL related to when 
> verifying rsa keys any way here it is:

The OpenSSL Dev mailing-list has just discussed a fix for an OpenSSL
deadlock, with a thread trying to re-acquire an already-held lock, as a
rare occurrence; changelogged as "Fix possible deadlock when decoding
public keys".  The report I read was a report from the OpenLDAP folks.

RT ticket (login guest/guest):
  OpenLDAP:
    http://rt.openssl.org/Ticket/Display.html?id=2866
  Earlier/original report:
    http://rt.openssl.org/Ticket/Display.html?id=2813

Fix in:
  http://cvs.openssl.org/chngview?cn=22570

Perhaps you're hitting the same issue?  Does that patch help?

-Phil