308405 – <www-servers/lighttpd-1.4.26-r1 breaks after upgrade to dev-libs/openssl-0.9.8m

Bug 308405 - <www-servers/lighttpd-1.4.26-r1 breaks after upgrade to dev-libs/openssl-0.9.8m

Summary: <www-servers/lighttpd-1.4.26-r1 breaks after upgrade to dev-libs/openssl-0.9.8m

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] Server (show other bugs)
Hardware:	x86 Linux

Importance:	High major (vote)
Assignee:	Christian Hoffmann (RETIRED)

URL:	http://redmine.lighttpd.net/projects/...
Whiteboard:
Keywords:	STABLEREQ

Duplicates (1):	311413 (view as bug list)
Depends on:
Blocks:

Reported:	2010-03-08 01:05 UTC by Simon Perry
Modified:	2010-05-16 17:54 UTC (History)
CC List:	10 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Overlay ebuild with sed patch for file src/network.c (lighttpd-1.4.26-r1.ebuild,5.85 KB, text/plain) 2010-03-14 13:09 UTC, gentoo	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Simon Perry 2010-03-08 01:05:23 UTC

After upgrading to openssl 0.9.8m, lighttpd no longer starts.

Reproducible: Always

Steps to Reproduce:
1. Upgrade openssl to 0.9.8m

Actual Results:  
# lighttpd -f /etc/lighttpd/lighttpd.conf 
2010-03-08 11:38:22: (network.c.529) SSL: error:00000000:lib(0):func(0):reason(0)

Expected Results:  
Lighttpd starts.

This is known (and fixed) upstream:

http://redmine.lighttpd.net/issues/2157

Comment 1 Simon Perry 2010-03-08 01:06:38 UTC

Just to add: This can be worked around by commenting out any SSL settings in lighttpd.conf.

Comment 2 Yuri Vasilevski (RETIRED) gentoo-dev

2010-03-13 00:24:15 UTC

There is apparently a patch at: http://blog.sekuritatea.com/index.php/archives/34
But I haven' t had the time to check it, just mentioning for the record.

Comment 3 gentoo 2010-03-14 13:09:24 UTC

Created attachment 223523 [details]
Overlay ebuild with sed patch for file src/network.c

A quick and dirty patch with sed.

Content see here:
http://redmine.lighttpd.net/attachments/1095/08-ssl-retval-fix.patch

Comment 4 Thilo Bangert (RETIRED) (RETIRED) gentoo-dev

2010-03-14 15:38:19 UTC

do these patches break with older openssl releases?

Comment 5 Thilo Bangert (RETIRED) (RETIRED) gentoo-dev

2010-03-14 21:33:43 UTC

1.4.26-r1 just hit the tree with the fix. please test - on both new and old openssl.
thanks

Comment 6 Simon Perry 2010-03-15 21:38:16 UTC

Confirm that it is fixed with 0.9.8m

Comment 7 gentoo 2010-03-16 22:38:23 UTC

(In reply to comment #6)
> Confirm that it is fixed with 0.9.8m
> 

This patch fixes the starting problem with openssl 0.9.8m.
It run's on my AMD64 without problems since three days.

I don't like to test it with older versions of openssl.
Less time at the moment...

Comment 8 Nikolaus Polak 2010-03-27 13:10:44 UTC

(In reply to comment #7)
> This patch fixes the starting problem with openssl 0.9.8m.
> It run's on my AMD64 without problems since three days.

On x86 stable with dev-libs/openssl-0.9.8n I did run into this bug, lighttpd-1.4.26-r1 fixed it for me, thanks.

Comment 9 Kacper Kowalik (Xarthisius) (RETIRED) gentoo-dev

2010-03-27 17:55:19 UTC

*** Bug 311413 has been marked as a duplicate of this bug. ***

Comment 10 Jeremy Olexa (darkside) (RETIRED) archtester

2010-04-04 03:49:19 UTC

Hi Thilo,
Please escalate this, the current stable tree is broken in this regard. Thanks.

Comment 11 Jeremy Olexa (darkside) (RETIRED) archtester

2010-04-04 04:23:23 UTC

(In reply to comment #5)
> 1.4.26-r1 just hit the tree with the fix. please test - on both new and old
> openssl.
> thanks
> 

My apologies, my last email was abit too hasty. I was in panic mode as I was migrating servers.

Two scenerios, x86 on both: 
ServerA: 
dev-libs/openssl-0.9.8l-r2
www-server/lighttpd-1.4.26-r1
ServerB:
dev-libs/openssl-0.9.8n
www-server/lighttpd-1.4.26-r1

Is there anything else you request to be tested? We should have .26-r1 stabilized as soon as practical.

Comment 12 Petteri Räty (RETIRED) gentoo-dev

2010-04-05 18:41:42 UTC

Adding arches to the loop as current stable is broken. I am not the maintainer so it's up to you to decide if you want to start stabling before ack from maintainers.

Comment 13 Thilo Bangert (RETIRED) (RETIRED) gentoo-dev

2010-04-06 06:14:58 UTC

ARCHS: please go ahead and stable. thanks

Comment 14 Jeroen Roovers (RETIRED) gentoo-dev

2010-04-06 14:44:34 UTC

So you want =www-servers/lighttpd-1.4.26-r1 stable, then.

Comment 15 Jeroen Roovers (RETIRED) gentoo-dev

2010-04-06 15:56:49 UTC

Stable for HPPA.

Comment 16 Andreas Schürch gentoo-dev

2010-04-06 20:15:09 UTC

Tested on x86, looks good to go.

Comment 17 Paweł Hajdan, Jr. (RETIRED) gentoo-dev

2010-04-07 17:58:37 UTC

x86 stable, thanks Andreas

Comment 18 fleg 2010-04-08 05:08:26 UTC

amd64 stable too

Comment 19 Leonid Kabanov 2010-04-10 12:00:10 UTC

Confirm, stable on amd64

Comment 20 Veovis 2010-04-10 15:28:16 UTC

(In reply to comment #5)
> 1.4.26-r1 just hit the tree with the fix. please test - on both new and old
> openssl.
> thanks
> 

This patch should also be included with lighttpd-1.4.25-r1, because this version is also affected by the SSL problem.
I tested the patch with 1.5.25-r1 and the problem has been resolved. No compilation problems, no runtime problems for now.

Comment 21 Jan Gerritsen 2010-04-11 09:36:15 UTC

Got the same bug with 1.4.25, 1.4.26-r1 fixed it and is running stabel. On amd64.

Comment 22 Tobias Heinlein (RETIRED) gentoo-dev

2010-04-11 13:19:17 UTC

amd64 stable.

Comment 23 Curro Tánago 2010-04-13 17:29:57 UTC

www-servers/lighttpd-1.4.26-r1 alpha ok

Comment 24 Tiago Cunha (RETIRED) gentoo-dev

2010-04-16 00:27:01 UTC

sparc stable

Comment 25 Raúl Porcel (RETIRED) gentoo-dev

2010-04-16 18:11:49 UTC

alpha/arm/ia64/sh stable

Comment 26 Joe Jezak (RETIRED) gentoo-dev

2010-05-13 16:18:05 UTC

Marked ppc/ppc64 stable.

Comment 27 Thilo Bangert (RETIRED) (RETIRED) gentoo-dev

2010-05-16 08:30:01 UTC

thanks everybody.