[Bug 1574058] Re: php-seclib: Call to undefined method Crypt_Base::Crypt_Base()

Wed Jun 8 11:04:15 UTC 2016

Hi Richard, thank you for taking this on.

> (BTW, why does -proposed even exist for the current development
version of Ubuntu? Why not go straight to release?)

Please see https://wiki.ubuntu.com/ProposedMigration. It allows us to
run dep8 tests on reverse test dependencies so updating one package
cannot regress others. phpseclib is currently stuck in yakkety-proposed
for this reason. The error looks quite similar to the problem you're
fixing but may be in a different package.

I'm subscribing Nish to take a look as I think he may know more about a
general solution for this.

This should not block an SRU to Xenial, but for a Xenial fix we want a
minimal diff please. I expect a single changelog entry referencing this
bug and a minimal patch, rather than basing on a newer Debian version.
Just dropping the quilt patch as you have done is fine if that is the
minimal requirement to fix the bug - is it? I appreciate that the newer
Debian version reverted one change, but what isn't clear to me is
whether that reversion is the minimal reversion necessary to fix this
bug.

Additionally we should consider testing other reverse depends of
phpseclib (if any exist?) for regressions, too. I think other reverse
dependencies should be discussed in the Regression Potential section.

-- 
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1574058

Title:
  php-seclib: Call to undefined method Crypt_Base::Crypt_Base()

Status in phpseclib package in Ubuntu:
  Confirmed
Status in phpseclib source package in Xenial:
  Confirmed
Status in phpseclib package in Debian:
  Fix Released

Bug description:
  [Impact]

  DokuWiki fails with a 500 internal server error when logging in.  This
  is caused by a regression in phpseclib introduced in 1.0.1-3 and
  subsequently fixed in 1.0.1-4.

  /var/log/apache2/error.log contains entries like the following:

  [Mon Apr 25 16:09:08.998092 2016] [:error] [pid 10897] [client 127.0.0.1:40832] PHP Fatal error:  Uncaught Error: Call to undefined method Crypt_Base::Crypt_Base() in /usr/share/php/Crypt/Rijndael.php:269
  Stack trace:
  #0 /usr/share/dokuwiki/inc/auth.php(503): Crypt_Rijndael->__construct()
  #1 /usr/share/dokuwiki/inc/auth.php(267): auth_decrypt(...)
  #2 /usr/share/dokuwiki/inc/auth.php(184): auth_login(...)
  #3 /usr/share/dokuwiki/inc/events.php(108): auth_login_wrapper(Array)
  #4 /usr/share/dokuwiki/inc/events.php(231): Doku_Event->trigger('auth_login_wrap...', true)
  #5 /usr/share/dokuwiki/inc/auth.php(117): trigger_event('AUTH_LOGIN_CHEC...', Array, 'auth_login_wrap...')
  #6 /usr/share/dokuwiki/inc/init.php(221): auth_setup()
  #7 /usr/share/dokuwiki/doku.php(29): require_once('/usr/share/doku...')
  #8 {main}
    thrown in /usr/share/php/Crypt/Rijndael.php on line 269

  [Test Case]

    1. Install the following packages:
       * dokuwiki (0.0.20140929.d-1ubuntu1)
       * apache2 (2.4.18-2ubuntu3)
       * libapache2-mod-php7.0 (7.0.4-7ubuntu2)
    2. Visit http://localhost/dokuwiki
    3. Log in

  [Regression Potential]

  Upgrading to 1.0.1-4 reverts the changes made in 1.0.1-3, making it
  identical to 1.0.1-2.  This version is known to work according to the
  upstream Debian bug report.

  [Other Info]

  == Regression details ==
  Discovered in version: 1.0.1-3
  Last known good version: 1.0.1-2

  Original description:

  Facing the same issue as bug #819420 in Debian.

  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819420

  Appears fixed in Debian's version 1.0.1-4, can we get the fix in
  Ubuntu Xenial as well?

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/phpseclib/+bug/1574058/+subscriptions