| 2021-11-23 12:06:02 |
Dimitri John Ledkov |
bug |
|
|
added bug |
| 2021-11-23 12:06:15 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Bionic |
|
| 2021-11-23 12:06:15 |
Dimitri John Ledkov |
bug task added |
|
openssl (Ubuntu Bionic) |
|
| 2021-11-23 12:06:15 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Impish |
|
| 2021-11-23 12:06:15 |
Dimitri John Ledkov |
bug task added |
|
openssl (Ubuntu Impish) |
|
| 2021-11-23 12:06:15 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Jammy |
|
| 2021-11-23 12:06:15 |
Dimitri John Ledkov |
bug task added |
|
openssl (Ubuntu Jammy) |
|
| 2021-11-23 12:06:15 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Focal |
|
| 2021-11-23 12:06:15 |
Dimitri John Ledkov |
bug task added |
|
openssl (Ubuntu Focal) |
|
| 2021-11-23 12:06:15 |
Dimitri John Ledkov |
nominated for series |
|
Ubuntu Hirsute |
|
| 2021-11-23 12:06:15 |
Dimitri John Ledkov |
bug task added |
|
openssl (Ubuntu Hirsute) |
|
| 2021-11-23 12:40:23 |
Eyal Itkin |
bug |
|
|
added subscriber Eyal Itkin |
| 2021-11-23 18:05:57 |
Dimitri John Ledkov |
description |
[Impact]
* Engine crashes when loading the configuration more than once
* Upstream started to avoid loading engines twice by using dynamic ids to track the loaded engines correctly
* OpenSSL 3 merge https://github.com/openssl/openssl/pull/17073 (bugfix & testcase)
* OpenSSL 1.1.1 backports:
https://github.com/openssl/openssl/commit/9b06ebb1edfddffea083ba36090af7eb7cad207b (bugfix)
https://github.com/openssl/openssl/pull/17083 (test case)
[Test Plan]
* https://github.com/openssl/openssl/issues/17023 lists multiple ways how one can trigger the issue at hand, but also test case implements this issue too by explicitly attempting to load an engine multiple times and checking that it is operational.
[Where problems could occur]
* Separately we have started to fix userspace packages that needlessly load configuration files multiple times, which used to trigger this issue. The codepaths changed are with engine use, how they are loaded/unloaded/used. It is possible that this fix will make some engines to start working and be used resulting in new behaviour. But also exposing bugs in the engines that previously were installed & configured but not actually used.
[Other Info]
* Previous bug reports about this issues are:
https://bugs.launchpad.net/ubuntu/+source/wget/+bug/1921518
https://bugs.launchpad.net/ubuntu/+source/curl/+bug/1940528 |
[Impact]
* Engine crashes when loading the configuration more than once
* Upstream started to avoid loading engines twice by using dynamic ids to track the loaded engines correctly
* OpenSSL 3 merge https://github.com/openssl/openssl/pull/17073 (bugfix & testcase)
* OpenSSL 1.1.1 backports:
https://github.com/openssl/openssl/commit/9b06ebb1edfddffea083ba36090af7eb7cad207b (bugfix)
https://github.com/openssl/openssl/commit/6d022b04748c2a89b7f032a41965df19c584e0cf (test case)
[Test Plan]
* https://github.com/openssl/openssl/issues/17023 lists multiple ways how one can trigger the issue at hand, but also test case implements this issue too by explicitly attempting to load an engine multiple times and checking that it is operational.
[Where problems could occur]
* Separately we have started to fix userspace packages that needlessly load configuration files multiple times, which used to trigger this issue. The codepaths changed are with engine use, how they are loaded/unloaded/used. It is possible that this fix will make some engines to start working and be used resulting in new behaviour. But also exposing bugs in the engines that previously were installed & configured but not actually used.
[Other Info]
* Previous bug reports about this issues are:
https://bugs.launchpad.net/ubuntu/+source/wget/+bug/1921518
https://bugs.launchpad.net/ubuntu/+source/curl/+bug/1940528 |
|
| 2021-11-23 18:08:04 |
Dimitri John Ledkov |
description |
[Impact]
* Engine crashes when loading the configuration more than once
* Upstream started to avoid loading engines twice by using dynamic ids to track the loaded engines correctly
* OpenSSL 3 merge https://github.com/openssl/openssl/pull/17073 (bugfix & testcase)
* OpenSSL 1.1.1 backports:
https://github.com/openssl/openssl/commit/9b06ebb1edfddffea083ba36090af7eb7cad207b (bugfix)
https://github.com/openssl/openssl/commit/6d022b04748c2a89b7f032a41965df19c584e0cf (test case)
[Test Plan]
* https://github.com/openssl/openssl/issues/17023 lists multiple ways how one can trigger the issue at hand, but also test case implements this issue too by explicitly attempting to load an engine multiple times and checking that it is operational.
[Where problems could occur]
* Separately we have started to fix userspace packages that needlessly load configuration files multiple times, which used to trigger this issue. The codepaths changed are with engine use, how they are loaded/unloaded/used. It is possible that this fix will make some engines to start working and be used resulting in new behaviour. But also exposing bugs in the engines that previously were installed & configured but not actually used.
[Other Info]
* Previous bug reports about this issues are:
https://bugs.launchpad.net/ubuntu/+source/wget/+bug/1921518
https://bugs.launchpad.net/ubuntu/+source/curl/+bug/1940528 |
[Impact]
* Engine crashes when loading the configuration more than once
* Upstream started to avoid loading engines twice by using dynamic ids to track the loaded engines correctly
* OpenSSL 3
https://github.com/openssl/openssl/commit/81c11349c2a0e945aa3dfc6bd81c957363dd2011 (bugfix)
https://github.com/openssl/openssl/commit/38e2957249c90317a26a080c7e7eb186dd5b6598 (test case)
* OpenSSL 1.1.1 backports:
https://github.com/openssl/openssl/commit/9b06ebb1edfddffea083ba36090af7eb7cad207b (bugfix)
https://github.com/openssl/openssl/pull/17083 (test case)
[Test Plan]
* https://github.com/openssl/openssl/issues/17023 lists multiple ways how one can trigger the issue at hand, but also test case implements this issue too by explicitly attempting to load an engine multiple times and checking that it is operational.
[Where problems could occur]
* Separately we have started to fix userspace packages that needlessly load configuration files multiple times, which used to trigger this issue. The codepaths changed are with engine use, how they are loaded/unloaded/used. It is possible that this fix will make some engines to start working and be used resulting in new behaviour. But also exposing bugs in the engines that previously were installed & configured but not actually used.
[Other Info]
* Previous bug reports about this issues are:
https://bugs.launchpad.net/ubuntu/+source/wget/+bug/1921518
https://bugs.launchpad.net/ubuntu/+source/curl/+bug/1940528 |
|
| 2021-11-24 10:29:54 |
Julian Andres Klode |
description |
[Impact]
* Engine crashes when loading the configuration more than once
* Upstream started to avoid loading engines twice by using dynamic ids to track the loaded engines correctly
* OpenSSL 3
https://github.com/openssl/openssl/commit/81c11349c2a0e945aa3dfc6bd81c957363dd2011 (bugfix)
https://github.com/openssl/openssl/commit/38e2957249c90317a26a080c7e7eb186dd5b6598 (test case)
* OpenSSL 1.1.1 backports:
https://github.com/openssl/openssl/commit/9b06ebb1edfddffea083ba36090af7eb7cad207b (bugfix)
https://github.com/openssl/openssl/pull/17083 (test case)
[Test Plan]
* https://github.com/openssl/openssl/issues/17023 lists multiple ways how one can trigger the issue at hand, but also test case implements this issue too by explicitly attempting to load an engine multiple times and checking that it is operational.
[Where problems could occur]
* Separately we have started to fix userspace packages that needlessly load configuration files multiple times, which used to trigger this issue. The codepaths changed are with engine use, how they are loaded/unloaded/used. It is possible that this fix will make some engines to start working and be used resulting in new behaviour. But also exposing bugs in the engines that previously were installed & configured but not actually used.
[Other Info]
* Previous bug reports about this issues are:
https://bugs.launchpad.net/ubuntu/+source/wget/+bug/1921518
https://bugs.launchpad.net/ubuntu/+source/curl/+bug/1940528 |
[Impact]
* Engine crashes when loading the configuration more than once
* Upstream started to avoid loading engines twice by using dynamic ids to track the loaded engines correctly
* OpenSSL 3
https://github.com/openssl/openssl/commit/81c11349c2a0e945aa3dfc6bd81c957363dd2011 (bugfix)
https://github.com/openssl/openssl/commit/38e2957249c90317a26a080c7e7eb186dd5b6598 (test case)
* OpenSSL 1.1.1 backports:
https://github.com/openssl/openssl/commit/9b06ebb1edfddffea083ba36090af7eb7cad207b (bugfix)
https://github.com/openssl/openssl/pull/17083 (test case)
[Test Plan]
* https://github.com/openssl/openssl/issues/17023 lists multiple ways how one can trigger the issue at hand, but also test case implements this issue too by explicitly attempting to load an engine multiple times and checking that it is operational.
The test is run during the build as part of the upstream regression test suite
[Where problems could occur]
* Separately we have started to fix userspace packages that needlessly load configuration files multiple times, which used to trigger this issue. The codepaths changed are with engine use, how they are loaded/unloaded/used. It is possible that this fix will make some engines to start working and be used resulting in new behaviour. But also exposing bugs in the engines that previously were installed & configured but not actually used.
[Other Info]
* Previous bug reports about this issues are:
https://bugs.launchpad.net/ubuntu/+source/wget/+bug/1921518
https://bugs.launchpad.net/ubuntu/+source/curl/+bug/1940528 |
|
| 2021-11-24 10:30:45 |
Julian Andres Klode |
openssl (Ubuntu Impish): status |
New |
In Progress |
|
| 2021-11-24 11:07:07 |
Julian Andres Klode |
openssl (Ubuntu Hirsute): status |
New |
In Progress |
|
| 2021-11-24 13:31:49 |
Julian Andres Klode |
description |
[Impact]
* Engine crashes when loading the configuration more than once
* Upstream started to avoid loading engines twice by using dynamic ids to track the loaded engines correctly
* OpenSSL 3
https://github.com/openssl/openssl/commit/81c11349c2a0e945aa3dfc6bd81c957363dd2011 (bugfix)
https://github.com/openssl/openssl/commit/38e2957249c90317a26a080c7e7eb186dd5b6598 (test case)
* OpenSSL 1.1.1 backports:
https://github.com/openssl/openssl/commit/9b06ebb1edfddffea083ba36090af7eb7cad207b (bugfix)
https://github.com/openssl/openssl/pull/17083 (test case)
[Test Plan]
* https://github.com/openssl/openssl/issues/17023 lists multiple ways how one can trigger the issue at hand, but also test case implements this issue too by explicitly attempting to load an engine multiple times and checking that it is operational.
The test is run during the build as part of the upstream regression test suite
[Where problems could occur]
* Separately we have started to fix userspace packages that needlessly load configuration files multiple times, which used to trigger this issue. The codepaths changed are with engine use, how they are loaded/unloaded/used. It is possible that this fix will make some engines to start working and be used resulting in new behaviour. But also exposing bugs in the engines that previously were installed & configured but not actually used.
[Other Info]
* Previous bug reports about this issues are:
https://bugs.launchpad.net/ubuntu/+source/wget/+bug/1921518
https://bugs.launchpad.net/ubuntu/+source/curl/+bug/1940528 |
[Impact]
* Engine crashes when loading the configuration more than once
* Upstream started to avoid loading engines twice by using dynamic ids to track the loaded engines correctly
* OpenSSL 3
https://github.com/openssl/openssl/commit/81c11349c2a0e945aa3dfc6bd81c957363dd2011 (bugfix)
https://github.com/openssl/openssl/commit/38e2957249c90317a26a080c7e7eb186dd5b6598 (test case)
* OpenSSL 1.1.1 backports:
https://github.com/openssl/openssl/commit/9b06ebb1edfddffea083ba36090af7eb7cad207b (bugfix)
https://github.com/openssl/openssl/pull/17083 (test case)
[Test Plan]
* https://github.com/openssl/openssl/issues/17023 lists multiple ways how one can trigger the issue at hand, but also test case implements this issue too by explicitly attempting to load an engine multiple times and checking that it is operational.
The test are unfortunately *SKIPPED* during the build as part of the upstream regression test suite
[Where problems could occur]
* Separately we have started to fix userspace packages that needlessly load configuration files multiple times, which used to trigger this issue. The codepaths changed are with engine use, how they are loaded/unloaded/used. It is possible that this fix will make some engines to start working and be used resulting in new behaviour. But also exposing bugs in the engines that previously were installed & configured but not actually used.
[Other Info]
* Previous bug reports about this issues are:
https://bugs.launchpad.net/ubuntu/+source/wget/+bug/1921518
https://bugs.launchpad.net/ubuntu/+source/curl/+bug/1940528 |
|
| 2021-11-24 13:47:15 |
Julian Andres Klode |
openssl (Ubuntu Focal): status |
New |
In Progress |
|
| 2021-11-24 13:48:02 |
Julian Andres Klode |
description |
[Impact]
* Engine crashes when loading the configuration more than once
* Upstream started to avoid loading engines twice by using dynamic ids to track the loaded engines correctly
* OpenSSL 3
https://github.com/openssl/openssl/commit/81c11349c2a0e945aa3dfc6bd81c957363dd2011 (bugfix)
https://github.com/openssl/openssl/commit/38e2957249c90317a26a080c7e7eb186dd5b6598 (test case)
* OpenSSL 1.1.1 backports:
https://github.com/openssl/openssl/commit/9b06ebb1edfddffea083ba36090af7eb7cad207b (bugfix)
https://github.com/openssl/openssl/pull/17083 (test case)
[Test Plan]
* https://github.com/openssl/openssl/issues/17023 lists multiple ways how one can trigger the issue at hand, but also test case implements this issue too by explicitly attempting to load an engine multiple times and checking that it is operational.
The test are unfortunately *SKIPPED* during the build as part of the upstream regression test suite
[Where problems could occur]
* Separately we have started to fix userspace packages that needlessly load configuration files multiple times, which used to trigger this issue. The codepaths changed are with engine use, how they are loaded/unloaded/used. It is possible that this fix will make some engines to start working and be used resulting in new behaviour. But also exposing bugs in the engines that previously were installed & configured but not actually used.
[Other Info]
* Previous bug reports about this issues are:
https://bugs.launchpad.net/ubuntu/+source/wget/+bug/1921518
https://bugs.launchpad.net/ubuntu/+source/curl/+bug/1940528 |
[Impact]
* Engine crashes when loading the configuration more than once
* Upstream started to avoid loading engines twice by using dynamic ids to track the loaded engines correctly
* OpenSSL 3
https://github.com/openssl/openssl/commit/81c11349c2a0e945aa3dfc6bd81c957363dd2011 (bugfix)
https://github.com/openssl/openssl/commit/38e2957249c90317a26a080c7e7eb186dd5b6598 (test case)
* OpenSSL 1.1.1 backports:
https://github.com/openssl/openssl/commit/9b06ebb1edfddffea083ba36090af7eb7cad207b (bugfix)
https://github.com/openssl/openssl/pull/17083 (test case)
[Test Plan]
* https://github.com/openssl/openssl/issues/17023 lists multiple ways how one can trigger the issue at hand, but also test case implements this issue too by explicitly attempting to load an engine multiple times and checking that it is operational.
The test a is run during the build as part of the upstream regression test suite, for the shared library build (as static build does not support engines), so you'll see one pass and one skip in the log.
[Where problems could occur]
* Separately we have started to fix userspace packages that needlessly load configuration files multiple times, which used to trigger this issue. The codepaths changed are with engine use, how they are loaded/unloaded/used. It is possible that this fix will make some engines to start working and be used resulting in new behaviour. But also exposing bugs in the engines that previously were installed & configured but not actually used.
[Other Info]
* Previous bug reports about this issues are:
https://bugs.launchpad.net/ubuntu/+source/wget/+bug/1921518
https://bugs.launchpad.net/ubuntu/+source/curl/+bug/1940528 |
|
| 2021-11-25 14:00:52 |
Launchpad Janitor |
openssl (Ubuntu): status |
New |
Confirmed |
|
| 2021-11-25 14:00:52 |
Launchpad Janitor |
openssl (Ubuntu Bionic): status |
New |
Confirmed |
|
| 2021-11-25 19:30:45 |
Simon Déziel |
bug |
|
|
added subscriber Simon Déziel |
| 2021-11-26 13:03:43 |
Łukasz Zemczak |
openssl (Ubuntu Impish): status |
In Progress |
Fix Committed |
|
| 2021-11-26 13:03:45 |
Łukasz Zemczak |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
| 2021-11-26 13:03:47 |
Łukasz Zemczak |
bug |
|
|
added subscriber SRU Verification |
| 2021-11-26 13:03:50 |
Łukasz Zemczak |
tags |
|
verification-needed verification-needed-impish |
|
| 2021-11-26 13:14:39 |
Łukasz Zemczak |
openssl (Ubuntu Hirsute): status |
In Progress |
Fix Committed |
|
| 2021-11-26 13:14:44 |
Łukasz Zemczak |
tags |
verification-needed verification-needed-impish |
verification-needed verification-needed-hirsute verification-needed-impish |
|
| 2021-11-26 13:21:06 |
Łukasz Zemczak |
openssl (Ubuntu Focal): status |
In Progress |
Fix Committed |
|
| 2021-11-26 13:21:14 |
Łukasz Zemczak |
tags |
verification-needed verification-needed-hirsute verification-needed-impish |
verification-needed verification-needed-focal verification-needed-hirsute verification-needed-impish |
|
| 2021-11-26 13:25:07 |
Łukasz Zemczak |
openssl (Ubuntu Bionic): status |
Confirmed |
Fix Committed |
|
| 2021-11-26 13:25:16 |
Łukasz Zemczak |
tags |
verification-needed verification-needed-focal verification-needed-hirsute verification-needed-impish |
verification-needed verification-needed-bionic verification-needed-focal verification-needed-hirsute verification-needed-impish |
|
| 2021-11-29 16:31:51 |
Julian Andres Klode |
tags |
verification-needed verification-needed-bionic verification-needed-focal verification-needed-hirsute verification-needed-impish |
verification-done verification-done-bionic verification-done-focal verification-done-hirsute verification-done-impish |
|
| 2021-12-07 16:17:40 |
Julian Andres Klode |
openssl (Ubuntu Jammy): status |
Confirmed |
Fix Committed |
|
| 2021-12-07 17:23:20 |
Launchpad Janitor |
openssl (Ubuntu Impish): status |
Fix Committed |
Fix Released |
|
| 2021-12-07 17:23:26 |
Brian Murray |
removed subscriber Ubuntu Stable Release Updates Team |
|
|
|
| 2021-12-07 17:24:23 |
Launchpad Janitor |
openssl (Ubuntu Hirsute): status |
Fix Committed |
Fix Released |
|
| 2021-12-07 17:27:25 |
Launchpad Janitor |
openssl (Ubuntu Focal): status |
Fix Committed |
Fix Released |
|
| 2021-12-07 17:27:55 |
Launchpad Janitor |
openssl (Ubuntu Bionic): status |
Fix Committed |
Fix Released |
|
| 2022-01-13 16:08:14 |
Launchpad Janitor |
openssl (Ubuntu Jammy): status |
Fix Committed |
Fix Released |
|
