Summary: | OpenSSL: Regression in 1.1.1e (EOF detection change) | ||
---|---|---|---|
Product: | Ports & Packages | Reporter: | Kubilay Kocak <koobs> |
Component: | Individual Port(s) | Assignee: | Bernard Spil <brnrd> |
Status: | Closed FIXED | ||
Severity: | Affects Many People | CC: | emaste, jason, jkim |
Priority: | Normal | Keywords: | regression |
Version: | Latest | Flags: | bugzilla:
maintainer-feedback?
(brnrd) koobs: merge-quarterly? |
Hardware: | Any | ||
OS: | Any | ||
URL: | https://github.com/openssl/openssl/pull/11400 | ||
See Also: |
https://github.com/openssl/openssl/pull/11400 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=245073 |
Description
Kubilay Kocak
2020-03-29 03:56:46 UTC
See Also: https://bugs.python.org/issue40018 Is this so pressing that we want to force massive rebuilds for all users of DEFAULT_VERSIONS= ssl=openssl ??? Or can we wait for the 1.1.1f update in 2 days? (In reply to Bernard Spil from comment #2) Difficult question. The scope of the impact is challenging to ascertain, but its likely the reports so far are the tip of the iceberg. Google results for openssl 1.1.1e eof is a decent sample. On one hand it requires rebuilds for ports users, on the other it fixes broken programs, services, etc. Additionally, consider the time delay to new packages being built post-resolution. Consider also that while unlikely 1.1.1f may introduce others issues/regressions, but I haven't checked the commit log between e and potential f. A commit references this bug: Author: brnrd Date: Sun Mar 29 16:00:41 UTC 2020 New revision: 529814 URL: https://svnweb.freebsd.org/changeset/ports/529814 Log: security/openssl: Fix EOF bug See https://github.com/openssl/openssl/pull/11400 PR: 245154 Reported by: koobs MFH: 2020Q1 Changes: head/security/openssl/Makefile head/security/openssl/files/patch-PR245154 A commit references this bug: Author: brnrd Date: Tue Mar 31 14:37:19 UTC 2020 New revision: 529977 URL: https://svnweb.freebsd.org/changeset/ports/529977 Log: security/openssl: Bug-fix update to 1.1.1f PR: 245154 MFH: 2020Q1 Changes: head/security/openssl/Makefile head/security/openssl/distinfo head/security/openssl/files/patch-PR245154 Fixed in 1.1.1g Not sure why this is fixed FreeBSD 11.3-RELEASE-p7 PHP 7.3.18 (cli) (built: May 18 2020 13:54:50) ( NTS ) Copyright (c) 1997-2018 The PHP Group Zend Engine v3.3.18, Copyright (c) 1998-2018 Zend Technologies with Zend OPcache v7.3.18, Copyright (c) 1999-2018, by Zend Technologies Segmentation fault (core dumped) # gdb /usr/local/bin/php php.core GNU gdb 6.1.1 [FreeBSD] Copyright 2004 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain conditions. Type "show copying" to see the conditions. There is absolutely no warranty for GDB. Type "show warranty" for details. This GDB was configured as "amd64-marcel-freebsd"...(no debugging symbols found)... Core was generated by `php -v'. Program terminated with signal 11, Segmentation fault. Reading symbols from /lib/libelf.so.2...Reading symbols from /usr/lib/debug//lib/libelf.so.2.debug...done. done. Loaded symbols for /lib/libelf.so.2 Reading symbols from /lib/libcrypt.so.5...Reading symbols from /usr/lib/debug//lib/libcrypt.so.5.debug...done. done. Loaded symbols for /lib/libcrypt.so.5 Reading symbols from /usr/local/lib/libargon2.so.0...done. Loaded symbols for /usr/local/lib/libargon2.so.0 Reading symbols from /lib/libm.so.5...Reading symbols from /usr/lib/debug//lib/libm.so.5.debug...done. done. Loaded symbols for /lib/libm.so.5 Reading symbols from /lib/libthr.so.3...Reading symbols from /usr/lib/debug//lib/libthr.so.3.debug...done. done. Loaded symbols for /lib/libthr.so.3 Reading symbols from /usr/local/lib/libxml2.so.2...done. Loaded symbols for /usr/local/lib/libxml2.so.2 Reading symbols from /lib/libz.so.6...Reading symbols from /usr/lib/debug//lib/libz.so.6.debug...done. done. Loaded symbols for /lib/libz.so.6 Reading symbols from /usr/lib/liblzma.so.5...Reading symbols from /usr/lib/debug//usr/lib/liblzma.so.5.debug...done. done. Loaded symbols for /usr/lib/liblzma.so.5 Reading symbols from /usr/local/lib/libpcre2-8.so.0...done. Loaded symbols for /usr/local/lib/libpcre2-8.so.0 Reading symbols from /lib/libc.so.7...Reading symbols from /usr/lib/debug//lib/libc.so.7.debug...done. done. Loaded symbols for /lib/libc.so.7 Reading symbols from /usr/local/lib/libssl.so.11...done. Loaded symbols for /usr/local/lib/libssl.so.11 Reading symbols from /usr/local/lib/libcrypto.so.11...done. Loaded symbols for /usr/local/lib/libcrypto.so.11 Reading symbols from /usr/local/lib/libintl.so.8...done. Loaded symbols for /usr/local/lib/libintl.so.8 Reading symbols from /usr/local/lib/libiconv.so.2...done. Loaded symbols for /usr/local/lib/libiconv.so.2 Reading symbols from /usr/local/lib/libglib-2.0.so.0...done. Loaded symbols for /usr/local/lib/libglib-2.0.so.0 Reading symbols from /usr/local/lib/libpcre.so.1...done. Loaded symbols for /usr/local/lib/libpcre.so.1 Reading symbols from /libexec/ld-elf.so.1...Reading symbols from /usr/lib/debug//libexec/ld-elf.so.1.debug...done. done. Loaded symbols for /libexec/ld-elf.so.1 #0 0x00000008049a73a2 in OPENSSL_LH_doall_arg () from /usr/local/lib/libcrypto.so.11 |