[Bug 1811817] Re: [SRU] weex crash/core dumps under Ubuntu 18.04 LTS.

Simon Chopin 1811817 at bugs.launchpad.net
Wed Jan 10 10:04:00 UTC 2024 

Unsubscribing ubuntu-sponsors since the package is currently sitting in
the SRU queue.

-- 
You received this bug notification because you are a member of Ubuntu
Sponsors, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1811817

Title:
  [SRU] weex crash/core dumps under Ubuntu 18.04 LTS.

Status in weex package in Ubuntu:
  Fix Released
Status in weex source package in Focal:
  In Progress
Status in weex source package in Jammy:
  Fix Released

Bug description:
  [ Impact ]

  weex is completely unusable in Focal as it will always segfault if any
  user tries to run the application.

  The problem was caused in '2.8.3ubuntu2' when it was rebuilt for openssl1.1. The configure script is checking for SSL_library_init() in libssl.so to determine if openssl is available or not. But SSL_library_init() was deprecated in openssl1.1 and so the package even though it was rebuilt just silently dropped the openssl support.
  As a result when 'weex' tried to connect to a ftp host, it tried to use a NULL pointer when it was trying to check if the host uses ssl or not.

  [ Test Plan ]

   * setup a ftp server
     - I have used vsftpd for this test. And the default configuration file is enough for this test.
   * Install weex
   * create the conf file at ~/.weex/weexrc
   * The following is enough for this test:

  [local]
  HostName        = 127.0.0.1
  SrcDir          = <srcdir>
  DestDir         = /ftp

  [default]
  LoginName       = <user>
  Password        = <password>

   * Replace SrcDir, LoginName and Password as appropriate for the system on which its tested.
   * execute 'weex local'

  [ Where problems could occur ]

   * This is an upstream change and was fixed in v2.8.4. None of the
  actual code is changed and is only using openssl1.1 correctly while
  building. And, so it should not affect user experience.

  [ Other Info ]

  * Only Focal is affected, all versions from Jammy are fixed as they have v2.8.4.
  * imho, the code is wrong. The configure scipt is checking for openssl and then defining USE_SSL if it finds libssl. So, if USE_SSL is not defined then the pointer 'host_use_SSL' is never initialized. But even then the code is trying to use that pointer.

  [ Original Bug Description ]

  Weex systematically crash under Ubuntu 18.04 LTS.  I have no clue why.

  $ weex website
  Connect    : ftp.somesite.com
  Segmentation fault (core dumped)
  $

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/weex/+bug/1811817/+subscriptions

More information about the Ubuntu-sponsors mailing list