From: "Julian Wälde" <redmine@...>
Date: 2010-02-21T00:13:01+09:00
Subject: [ruby-core:28269] [Bug #2768] SEGV when using OpenSSL::Cipher (AES)  in certain way

Bug #2768: SEGV when using OpenSSL::Cipher (AES)  in certain way
http://redmine.ruby-lang.org/issues/show/2768

Author: Julian W��lde
Status: Open, Priority: Normal
Category: lib
ruby -v: ruby 1.9.1p378 (2010-01-10 revision 26273) [x86_64-linux] 

this command gives me an SEGV on my boxes:

ruby -e 'require "openssl";OpenSSL::Cipher::AES128.new("ECB").update "testtesttesttest"'

while this command does not:

ruby -e 'require "openssl";OpenSSL::Cipher::AES128.new("ECB").update "testtesttesttes"'

A friend of mine reproduced it on his mac(1.8.6). It also worked on a server where ruby 1.8.7 (2008-08-11 patchlevel 72) [x86_64-linux] is running.

It works for any kind of Blockciphermode, but not for other ciphers (e.g. BF)


----------------------------------------
http://redmine.ruby-lang.org