[Bug 1951943] [NEW] Engine crashes when loading the configuration more than once
Dimitri John Ledkov
1951943 at bugs.launchpad.net
Tue Nov 23 12:06:02 UTC 2021
Public bug reported:
[Impact]
* Engine crashes when loading the configuration more than once
* Upstream started to avoid loading engines twice by using dynamic ids
to track the loaded engines correctly
* OpenSSL 3 merge https://github.com/openssl/openssl/pull/17073 (bugfix
& testcase)
* OpenSSL 1.1.1 backports:
https://github.com/openssl/openssl/commit/9b06ebb1edfddffea083ba36090af7eb7cad207b (bugfix)
https://github.com/openssl/openssl/pull/17083 (test case)
[Test Plan]
* https://github.com/openssl/openssl/issues/17023 lists multiple ways
how one can trigger the issue at hand, but also test case implements
this issue too by explicitly attempting to load an engine multiple times
and checking that it is operational.
[Where problems could occur]
* Separately we have started to fix userspace packages that needlessly
load configuration files multiple times, which used to trigger this
issue. The codepaths changed are with engine use, how they are
loaded/unloaded/used. It is possible that this fix will make some
engines to start working and be used resulting in new behaviour. But
also exposing bugs in the engines that previously were installed &
configured but not actually used.
[Other Info]
* Previous bug reports about this issues are:
https://bugs.launchpad.net/ubuntu/+source/wget/+bug/1921518
https://bugs.launchpad.net/ubuntu/+source/curl/+bug/1940528
** Affects: openssl (Ubuntu)
Importance: Undecided
Status: New
** Affects: openssl (Ubuntu Bionic)
Importance: Undecided
Status: New
** Affects: openssl (Ubuntu Focal)
Importance: Undecided
Status: New
** Affects: openssl (Ubuntu Hirsute)
Importance: Undecided
Status: New
** Affects: openssl (Ubuntu Impish)
Importance: Undecided
Status: New
** Affects: openssl (Ubuntu Jammy)
Importance: Undecided
Status: New
** Also affects: openssl (Ubuntu Bionic)
Importance: Undecided
Status: New
** Also affects: openssl (Ubuntu Impish)
Importance: Undecided
Status: New
** Also affects: openssl (Ubuntu Jammy)
Importance: Undecided
Status: New
** Also affects: openssl (Ubuntu Focal)
Importance: Undecided
Status: New
** Also affects: openssl (Ubuntu Hirsute)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1951943
Title:
Engine crashes when loading the configuration more than once
Status in openssl package in Ubuntu:
New
Status in openssl source package in Bionic:
New
Status in openssl source package in Focal:
New
Status in openssl source package in Hirsute:
New
Status in openssl source package in Impish:
New
Status in openssl source package in Jammy:
New
Bug description:
[Impact]
* Engine crashes when loading the configuration more than once
* Upstream started to avoid loading engines twice by using dynamic
ids to track the loaded engines correctly
* OpenSSL 3 merge https://github.com/openssl/openssl/pull/17073
(bugfix & testcase)
* OpenSSL 1.1.1 backports:
https://github.com/openssl/openssl/commit/9b06ebb1edfddffea083ba36090af7eb7cad207b (bugfix)
https://github.com/openssl/openssl/pull/17083 (test case)
[Test Plan]
* https://github.com/openssl/openssl/issues/17023 lists multiple ways
how one can trigger the issue at hand, but also test case implements
this issue too by explicitly attempting to load an engine multiple
times and checking that it is operational.
[Where problems could occur]
* Separately we have started to fix userspace packages that
needlessly load configuration files multiple times, which used to
trigger this issue. The codepaths changed are with engine use, how
they are loaded/unloaded/used. It is possible that this fix will make
some engines to start working and be used resulting in new behaviour.
But also exposing bugs in the engines that previously were installed &
configured but not actually used.
[Other Info]
* Previous bug reports about this issues are:
https://bugs.launchpad.net/ubuntu/+source/wget/+bug/1921518
https://bugs.launchpad.net/ubuntu/+source/curl/+bug/1940528
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1951943/+subscriptions
More information about the foundations-bugs
mailing list