<html><head></head><body><div style="color:#000; background-color:#fff; font-family:HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif;font-size:16px"><div id="yui_3_16_0_1_1451967106467_3214" dir="ltr">Mich,</div><div id="yui_3_16_0_1_1451967106467_3222" dir="ltr"><br></div><div id="yui_3_16_0_1_1451967106467_3521" dir="ltr">I found a regression in 5.29.If I run stunnel.exe or tstunnel.exe with no arguments, having a configuration file stunnel.conf in the current directory, the program segfaults. This works fine on 5.28 or previous versions.</div><div id="yui_3_16_0_1_1451967106467_4096" dir="ltr"><br></div><div id="yui_3_16_0_1_1451967106467_4508" dir="ltr">I uploaded a dump file to <a id="yui_3_16_0_1_1451967106467_4242" href="http://www.osronline.com/page.cfm?name=Analyze">http://www.osronline.com/page.cfm?name=Analyze</a> and the report pointed to a call to strncpy. Then, I ran a diff between 5.28 and 5.29 sources and this sent me to file options.c, function options_cmdline. I found that in the call strncpy(configuration_file, name, PATH_MAX-1), name was null. The problem is that variable name initialized at the begining of the function is garbled at the end. The following patch fixed the issue for me:<br></div><div id="yui_3_16_0_1_1451967106467_3557" dir="ltr"><br></div>--- options.c.old Tue Dec 22 18:09:39 2015<br class="" id="yui_3_16_0_1_1451967106467_3592">+++ options.c Mon Jan 04 23:14:29 2016<br class="" id="yui_3_16_0_1_1451967106467_3594">@@ -272,8 +272,11 @@<br class="" id="yui_3_16_0_1_1451967106467_3596"> } else<br class="" id="yui_3_16_0_1_1451967106467_3598"> #endif<br class="" id="yui_3_16_0_1_1451967106467_3600"> {<br class="" id="yui_3_16_0_1_1451967106467_3602">- name=arg1;<br class="" id="yui_3_16_0_1_1451967106467_3604">- type=CONF_FILE;<br class="" id="yui_3_16_0_1_1451967106467_3606">+ if (arg1)<br class="" id="yui_3_16_0_1_1451967106467_3608">+ {<br class="" id="yui_3_16_0_1_1451967106467_3610">+ name=arg1;<br class="" id="yui_3_16_0_1_1451967106467_3612">+ type=CONF_FILE;<br class="" id="yui_3_16_0_1_1451967106467_3614">+ }<br class="" id="yui_3_16_0_1_1451967106467_3616"> }<br class="" id="yui_3_16_0_1_1451967106467_3618"><br class="" id="yui_3_16_0_1_1451967106467_3620"><div id="yui_3_16_0_1_1451967106467_3621" dir="ltr"> #ifdef HAVE_REALPATH</div><div id="yui_3_16_0_1_1451967106467_3221" dir="ltr"><br></div><div id="yui_3_16_0_1_1451967106467_3224" dir="ltr"><br></div><div dir="ltr" id="yui_3_16_0_1_1451967106467_2577"><span>Regards,</span></div><div id="yui_3_16_0_1_1451967106467_7277" dir="ltr"><span><br></span></div><div id="yui_3_16_0_1_1451967106467_7278" dir="ltr"><span>Jose A. Diaz</span></div> <div id="yui_3_16_0_1_1451967106467_6723" class="qtdSeparateBR"><br><br></div><div style="display: block;" id="yui_3_16_0_1_1451967106467_7271" class="yahoo_quoted"> <div id="yui_3_16_0_1_1451967106467_7270" style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size: 16px;"> <div id="yui_3_16_0_1_1451967106467_7269" style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size: 16px;"> <div id="yui_3_16_0_1_1451967106467_7268" dir="ltr"><font id="yui_3_16_0_1_1451967106467_7272" face="Arial" size="2"> On Monday, January 4, 2016 4:11 PM, Michal Trojnara <Michal.Trojnara@mirt.net> wrote:<br></font></div> <br><br> <div id="yui_3_16_0_1_1451967106467_7301" class="y_msg_container">-----BEGIN PGP SIGNED MESSAGE-----<br>Hash: SHA256<br><br>Hi Guys,<br><br>This Friday I intend to release stunnel 5.29.<br><br>The planned list of changes:<br><br>* New features<br> - New WIN32 icons.<br> - Performance improvement: rwlocks used for locking with pthreads.<br><br>* Bugfixes<br> - Compilation fix for *BSD.<br> - Fixed configuration file reload for relative stunnel.conf path<br> on Unix.<br> - Fixed ignoring CRLfile unless CAfile was also specified (thx<br> to Strukov Petr).<br><br>Feel free to try stunnel 5.29b3, so I can fix any<br>discovered issues before the final release:<br><a href="https://www.stunnel.org/downloads.html" target="_blank">https://www.stunnel.org/downloads.html</a><br><br>Best regards,<br> Mike<br>-----BEGIN PGP SIGNATURE-----<br>Version: GnuPG v2<br>Comment: Using GnuPG with Thunderbird - <a href="http://www.enigmail.net/" target="_blank">http://www.enigmail.net/</a><br><br>iQIcBAEBCAAGBQJWit/iAAoJEC78f/DUFuAUtv8P/izyH0DIhUsDCWbYlyWRJDjr<br>2lwE1sYwmmMqtArM31N25QtRidEbZgTbuWQXaXY7/HALTnnI1VbDrbtAntVkovQr<br>FDXGlVvkife2IuSDS92b8ezEuq5swCQoT6KoHJDj9yLBSTQdZNxGHv9GfbS90mmv<br>fX3zcWmh+SklYnVgGrnc3GfgecaUS261KArdW1BTfA5ucydzse9z9X+2/iA7zl7i<br>wwvSHkfH3+Q3VsmJaSmoHTiMqzRzvH0NpKnbm0J5OfOql/fT9Mfn57U5ZGnC5iWP<br>bLlPmmP+fC7WLX8Cwl2DWESJ8kxPn2xEJbDGeCn9uzI0feKXMLwF/yrJopYVetIx<br>fJDgts4iR8eFRcFcSIpBrnWxNoTi4RhCzuIj8U/zYOBsHJPs6gPcuDG9fYtPXhF8<br>D93e8HeOW7naNyi+mTDjBo8qdiGGh+/ITp1PkNonVgFCWkxLIpfS2k6iQ/DqNTXd<br>szMU+uLeub5vt3ifRnSieTpIDTAsSbp0jarlXFRQNrUB0Cl8sgv/Ssl+ZYnDRyIa<br>2aTrK00eSc1nk+kZGJg5kTJM/t6PzfxtDUhVo5Pr6u9gwa94c34AHQ04W5dA7rTV<br>4pD4DxpFEk+2Syndjt6lncT/O2at3aYUkhyTZ/tN8/P22v1OWp+ci1WIpNXp/zVX<br>z12IUAFfyQPIuvdwLzZr<br>=CEXd<br>-----END PGP SIGNATURE-----<br>_______________________________________________<br>stunnel-users mailing list<br><a ymailto="mailto:stunnel-users@stunnel.org" href="mailto:stunnel-users@stunnel.org">stunnel-users@stunnel.org</a><br><a id="yui_3_16_0_1_1451967106467_7300" href="https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users" target="_blank">https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users</a><br><br><br></div> </div> </div> </div></div></body></html>