Bug #4919: OpenSSL::SSL::Sesssion#time= に Bignum を渡すと ArgumentError が発生する - Ruby - Ruby Issue Tracking System

Custom queries

Backport 3.2
Backport 3.3
Backport 3.4
bugs: unassigned
DevMeeting
matz
Open issues with attachment
Windows

Actions

Copy link

Bug #4919

closed

OpenSSL::SSL::Sesssion#time= に Bignum を渡すと ArgumentError が発生する

Added by nagachika (Tomoyuki Chikanaga) almost 14 years ago. Updated almost 14 years ago.

Status:

Closed

Assignee:

Target version:

1.9.2

ruby -v:

Backport:

[ruby-dev:43869]

Description

掲題のような理由で make test-all TESTS="-v openssl/test_ssl_session.rb" を実行すると 1E になります。

Error:
test_session(OpenSSL::TestSSLSession):
ArgumentError: unknown type
/opt/ruby-trunk/src/ruby/test/openssl/test_ssl_session.rb:21:in time=' /opt/ruby-trunk/src/ruby/test/openssl/test_ssl_session.rb:21:in block in test_session'
/opt/ruby-trunk/src/ruby/test/openssl/utils.rb:280:in call' /opt/ruby-trunk/src/ruby/test/openssl/utils.rb:280:in start_server'
/opt/ruby-trunk/src/ruby/test/openssl/test_ssl_session.rb:7:in `test_session'

32bit 版のため Time.now.to_i が Bignum になり、OpenSSL::SSL::Sesssion#time= がこれをエラーとして弾くようです。

とりあえず以下のように Bignum 受け付けるようにしてみたところテストのErrorは回避されました。

--- a/ext/openssl/ossl_ssl_session.c
+++ b/ext/openssl/ossl_ssl_session.c
@@ -149,7 +149,7 @@ static VALUE ossl_ssl_session_get_timeout(VALUE self)

if (rb_obj_is_instance_of(time_v, rb_cTime)) {
time_v = rb_funcall(time_v, rb_intern("to_i"), 0); \

          } else if (FIXNUM_P(time_v)) {                                \

          } else if (FIXNUM_P(time_v) || TYPE(time_v) == T_BIGNUM) {     \
                  ;                                                     \
          } else {                                                      \
                  rb_raise(rb_eArgError, "unknown type");               \

Related issues 1 (0 open — 1 closed)

Related to Ruby - Bug #4923: [ext/openssl] test_ssl.rb: test_client_auth fails

Closed

MartinBosslet (Martin Bosslet)

06/23/2011

Actions

Issue # Delay: days Cancel

History
Notes
Property changes
Associated revisions

Actions

Copy link

#1 [ruby-dev:43871]

Updated by MartinBosslet (Martin Bosslet) almost 14 years ago

I get the same result for OpenSSL 0.9.8k plus an additional error when running

make test-all -TESTS="openssl"

on revision 32199.

Error:
test_connect_and_close(OpenSSL::TestSSL):
OpenSSL::SSL::SSLError: SSL_connect returned=1 errno=0 state=SSLv3 read finished A: sslv3 alert illegal parameter
/home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl.rb:46:in connect' /home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl.rb:46:in block in test_connect_and_close'
/home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/utils.rb:280:in call' /home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/utils.rb:280:in start_server'
/home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl.rb:35:in `test_connect_and_close'
Error:
test_session(OpenSSL::TestSSLSession):
ArgumentError: unknown type
/home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl_session.rb:21:in time=' /home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl_session.rb:21:in block in test_session'
/home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/utils.rb:280:in call' /home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/utils.rb:280:in start_server'
/home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl_session.rb:7:in `test_session'

The latter can be solved by Tomoyuki's suggested fix.

Two questions:

Is it OK if I apply the fix?
Anyone else getting the "sslv3 alert illegal parameter"? I get it most of the time but not always...

Regards,
Martin

Actions

Copy link

#2 [ruby-dev:43872]

Updated by nagachika (Tomoyuki Chikanaga) almost 14 years ago

Hi, Martin

Is it OK if I apply the fix?
Yes, please apply it. :)

Anyone else getting the "sslv3 alert illegal parameter"? I get it most of the time but not always...
I can't get this error on Ubuntu 10.4 with openssl(0.9.8k-7ubuntu).

Regards,

Actions

Copy link

Updated by Anonymous almost 14 years ago

Status changed from Open to Closed
% Done changed from 0 to 100

This issue was solved with changeset r32203.
Tomoyuki, thank you for reporting this issue.
Your contribution to Ruby is greatly appreciated.
May Ruby be with you.

ext/openssl/ossl_ssl_session.c: Respect T_BIGNUM time values. Patch by
Tomoyuki Chikanaga.
[ Ruby 1.9 - Bug #4919 ] [ruby-dev:43869]

Actions

Copy link

#4 [ruby-dev:43880]

Updated by nahi (Hiroshi Nakamura) almost 14 years ago

ruby -v changed from ruby 1.9.3dev (2011-06-22 trunk 32198) [i686-linux] to -

報告ありがとうございます。32bit環境で落ちるとか考えてませんでした。。。
Thanks for the report. I was not aware that the code has 64bit dependency...

On Wed, Jun 22, 2011 at 18:45, Tomoyuki Chikanaga nagachika00@gmail.com wrote:

Is it OK if I apply the fix?
Yes, please apply it. :)

I modified it a little at r32211.

Martin, please add a test when you commit a gift patch. Thanks!

Anyone else getting the "sslv3 alert illegal parameter"? I get it most of the time but not always...
I can't get this error on Ubuntu 10.4 with openssl(0.9.8k-7ubuntu).

Please file it.

Regards,
// NaHi

Actions

Copy link

#5 [ruby-dev:43880]

Updated by nahi (Hiroshi Nakamura) almost 14 years ago

報告ありがとうございます。32bit環境で落ちるとか考えてませんでした。。。
Thanks for the report. I was not aware that the code has 64bit dependency...

On Wed, Jun 22, 2011 at 18:45, Tomoyuki Chikanaga nagachika00@gmail.com wrote:

Is it OK if I apply the fix?
Yes, please apply it. :)

I modified it a little at r32211.

Martin, please add a test when you commit a gift patch. Thanks!

Anyone else getting the "sslv3 alert illegal parameter"? I get it most of the time but not always...
I can't get this error on Ubuntu 10.4 with openssl(0.9.8k-7ubuntu).

Please file it.

Regards,
// NaHi

Actions

Copy link

#6 [ruby-dev:43881]

Updated by MartinBosslet (Martin Bosslet) almost 14 years ago

2011/6/23 Hiroshi Nakamura nakahiro@gmail.com:

報告ありがとうございます。32bit環境で落ちるとか考えてませんでした。。。
Thanks for the report. I was not aware that the code has 64bit dependency...

On Wed, Jun 22, 2011 at 18:45, Tomoyuki Chikanaga nagachika00@gmail.com wrote:

Is it OK if I apply the fix?
Yes, please apply it. :)

I modified it a little at r32211.

This gives me: (Ubuntu 10.04 32bit, OpenSSL 0.9.8k)

Error:
test_session_time(OpenSSL::TestSSLSession):
RangeError: bignum too big to convert into long' /home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl_session.rb:71:in time='
/home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl_session.rb:71:in
`test_session_time'
Error:
test_session_timeout(OpenSSL::TestSSLSession):
RangeError: bignum too big to convert into long' /home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl_session.rb:84:in timeout='
/home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl_session.rb:84:in
`test_session_timeout'

Martin, please add a test when you commit a gift patch. Thanks!

I assumed the broken test would cover the patch code - but you're
right, I should add tests
that specifically test new features/improvements - I'll pay more
attention to that in the future!

Anyone else getting the "sslv3 alert illegal parameter"? I get it most of the time but not always...
I can't get this error on Ubuntu 10.4 with openssl(0.9.8k-7ubuntu).

Please file it.

Just wanted to do that, but it seems it's fixed in 32211 - can't
reproduce it anymore :)

Regards,
Martin

Actions

Copy link

#7 [ruby-dev:43881]

Updated by MartinBosslet (Martin Bosslet) almost 14 years ago

2011/6/23 Hiroshi Nakamura nakahiro@gmail.com:

報告ありがとうございます。32bit環境で落ちるとか考えてませんでした。。。
Thanks for the report. I was not aware that the code has 64bit dependency...

On Wed, Jun 22, 2011 at 18:45, Tomoyuki Chikanaga nagachika00@gmail.com wrote:

Is it OK if I apply the fix?
Yes, please apply it. :)

I modified it a little at r32211.

This gives me: (Ubuntu 10.04 32bit, OpenSSL 0.9.8k)

Error:
test_session_time(OpenSSL::TestSSLSession):
RangeError: bignum too big to convert into long' /home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl_session.rb:71:in time='
/home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl_session.rb:71:in
`test_session_time'
Error:
test_session_timeout(OpenSSL::TestSSLSession):
RangeError: bignum too big to convert into long' /home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl_session.rb:84:in timeout='
/home/martin/Projekte/Ruby/ruby-svn/ruby/test/openssl/test_ssl_session.rb:84:in
`test_session_timeout'

Martin, please add a test when you commit a gift patch. Thanks!

I assumed the broken test would cover the patch code - but you're
right, I should add tests
that specifically test new features/improvements - I'll pay more
attention to that in the future!

Anyone else getting the "sslv3 alert illegal parameter"? I get it most of the time but not always...
I can't get this error on Ubuntu 10.4 with openssl(0.9.8k-7ubuntu).

Please file it.

Just wanted to do that, but it seems it's fixed in 32211 - can't
reproduce it anymore :)

Regards,
Martin

Actions

Copy link

#8 [ruby-dev:43883]

Updated by nahi (Hiroshi Nakamura) almost 14 years ago

2011/6/23 Martin BoÃlet martin.bosslet@googlemail.com:

I modified it a little at r32211.

This gives me: (Ubuntu 10.04 32bit, OpenSSL 0.9.8k)

Aaaaarhg! Sorry, 2**31 is not in a signed long value. Miserable me...
Fixed at r32212.

Martin, please add a test when you commit a gift patch. Thanks!

I assumed the broken test would cover the patch code - but you're
right, I should add tests
that specifically test new features/improvements - I'll pay more
attention to that in the future!

Ah, sure, I should have written more tests when I wrote a testcase.

Anyone else getting the "sslv3 alert illegal parameter"? I get it most of the time but not always...
I can't get this error on Ubuntu 10.4 with openssl(0.9.8k-7ubuntu).

Please file it.

Just wanted to do that, but it seems it's fixed in 32211 - can't
reproduce it anymore :)

Indeed? I don't think fixes of today affect SSL negotiation... Please
file a new ticket when you get kind of SSL error next time. Log dump
(w/o reproducible script) is far better than nothing.

Regards,
// NaHi

Actions

Copy link

#9 [ruby-dev:43883]

Updated by nahi (Hiroshi Nakamura) almost 14 years ago

2011/6/23 Martin BoÃlet martin.bosslet@googlemail.com:

I modified it a little at r32211.

This gives me: (Ubuntu 10.04 32bit, OpenSSL 0.9.8k)

Aaaaarhg! Sorry, 2**31 is not in a signed long value. Miserable me...
Fixed at r32212.

Martin, please add a test when you commit a gift patch. Thanks!

I assumed the broken test would cover the patch code - but you're
right, I should add tests
that specifically test new features/improvements - I'll pay more
attention to that in the future!

Ah, sure, I should have written more tests when I wrote a testcase.

Anyone else getting the "sslv3 alert illegal parameter"? I get it most of the time but not always...
I can't get this error on Ubuntu 10.4 with openssl(0.9.8k-7ubuntu).

Please file it.

Just wanted to do that, but it seems it's fixed in 32211 - can't
reproduce it anymore :)

Indeed? I don't think fixes of today affect SSL negotiation... Please
file a new ticket when you get kind of SSL error next time. Log dump
(w/o reproducible script) is far better than nothing.

Regards,
// NaHi

Actions

Copy link

#10 [ruby-dev:43886]

Updated by MartinBosslet (Martin Bosslet) almost 14 years ago

Hiroshi NAKAMURA wrote:

Aaaaarhg! Sorry, 2**31 is not in a signed long value. Miserable me...
Fixed at r32212.

No problem, works fine now. Happens to the best of us ;)

Anyone else getting the "sslv3 alert illegal parameter"? I get it most of the time but not always...
I can't get this error on Ubuntu 10.4 with openssl(0.9.8k-7ubuntu).

Please file it.

Just wanted to do that, but it seems it's fixed in 32211 - can't
reproduce it anymore :)

Indeed? I don't think fixes of today affect SSL negotiation... Please
file a new ticket when you get kind of SSL error next time. Log dump
(w/o reproducible script) is far better than nothing.

I was finally able to reproduce it, although with a different error message this time. Cf. http://redmine.ruby-lang.org/issues/4923. I suspect it could be related to OpenSSL 1.0.0, since I could not reproduce it with 0.9.8k.

Regards,
Martin

Actions

Copy link

Also available in: Atom PDF

Like0

Like0Like0Like0Like0Like0Like0Like0Like0Like0Like0

Project

General

Profile

Ruby

Custom queries

Bug #4919

OpenSSL::SSL::Sesssion#time= に Bignum を渡すと ArgumentError が発生する

Updated by MartinBosslet (Martin Bosslet) almost 14 years ago

Updated by nagachika (Tomoyuki Chikanaga) almost 14 years ago

Updated by Anonymous almost 14 years ago

Updated by nahi (Hiroshi Nakamura) almost 14 years ago

Updated by nahi (Hiroshi Nakamura) almost 14 years ago

Updated by MartinBosslet (Martin Bosslet) almost 14 years ago

Updated by MartinBosslet (Martin Bosslet) almost 14 years ago

Updated by nahi (Hiroshi Nakamura) almost 14 years ago

Updated by nahi (Hiroshi Nakamura) almost 14 years ago

Updated by MartinBosslet (Martin Bosslet) almost 14 years ago