Uploaded image for project: 'Couchbase C client library libcouchbase'
  1. Couchbase C client library libcouchbase
  2. CCBC-814

SSL connections broken with OpenSSL 1.1

    XMLWordPrintable

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 2.8.0
    • library
    • None

    Description

      Fedora 26 and Debian 9 have OpenSSL 1.1 by default.
      BUF_MEM in OpenSSL has been optimized, and now our growing function cannot rely on its length and max fields. This leads to passing NULL pointer to read function, and eventually to errno 14 Bad address.

      Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          This is likely the change, which changed behaviour: https://github.com/openssl/openssl/commit/9fe9d0461ea

          It seems like now BIO_get_mem_ptr() returns readonly view of the buffer, and we should not grow it

          avsej Sergey Avseyev added a comment - This is likely the change, which changed behaviour: https://github.com/openssl/openssl/commit/9fe9d0461ea It seems like now BIO_get_mem_ptr() returns readonly view of the buffer, and we should not grow it

          People

            avsej Sergey Avseyev
            avsej Sergey Avseyev
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Gerrit Reviews

                There are no open Gerrit changes

                PagerDuty