Debian Bug report logs -
#759381
php5: PHP 5.6.0 RC3/RC4 breaks SSL/TLS connections
Reported by: Darkhorse Winterwolf <dh@winterwolf.co.uk>
Date: Tue, 26 Aug 2014 21:39:02 UTC
Severity: important
Tags: upstream
Found in versions php5/5.6.0~rc4+dfsg-4, php5/5.6.0~rc4+dfsg-2, php5/5.6.0~rc4+dfsg-3, php5/5.6.0~rc3+dfsg-2, php5/5.6.0~rc4+dfsg-1
Fixed in versions php5/5.6.0~rc3+dfsg-1, 5.6.0+dfsg-1
Done: Ondřej Surý <ondrej@sury.org>
Bug is archived. No further changes may be made.
Forwarded to https://bugs.php.net/bug.php?id=41631
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>:
Bug#759381; Package php5-common.
(Tue, 26 Aug 2014 21:39:06 GMT) (full text, mbox, link).
Acknowledgement sent
to Darkhorse Winterwolf <dh@winterwolf.co.uk>:
New Bug report received and forwarded. Copy sent to Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>.
(Tue, 26 Aug 2014 21:39:06 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: php5-common
Version: 5.6.0~rc4+dfsg-4
Severity: normal
Hello,
I upgraded a number of packages over the weekend, and found that
RoundCube stopped working. After rather a lot of digging around, it seems
I'm not alone, and the problem actually lies with PHP, specifically
version 5.6.0 RC4. Just to check this, RoundCube itself was not updated,
neither was my IMAP server, and by using the same RoundCube version with
an older PHP version, the bug disappears.
The problem appears to be described better than I probably could at this
URL:
http://bugs.horde.org/ticket/13491
At the moment, this breaks RoundCube in Jessie and Sid systems when
connecting to an IMAP server using TLS. It might well break other things
too, but this is what's affecting me. It seems that it should be assigned
to PHP rather than RoundCube from what I've read, but feel free to
reassign if you disagree. Similarly, if I can provide any further
information, just let me know and I'll update the report as soon as
possible.
All the best,
-DH.
-- Package-specific info:
==== Additional PHP 5 information ====
++++ PHP 5 SAPI (php5query -S): ++++
apache2
cli
++++ PHP 5 Extensions (php5query -M -v): ++++
sqlite3 (Enabled for apache2 by maintainer script)
sqlite3 (Enabled for cli by maintainer script)
pdo (Enabled for apache2 by maintainer script)
pdo (Enabled for cli by maintainer script)
readline (Enabled for apache2 by maintainer script)
readline (Enabled for cli by maintainer script)
opcache (Enabled for apache2 by maintainer script)
opcache (Enabled for cli by maintainer script)
imap (Enabled for apache2 by maintainer script)
imap (Enabled for cli by maintainer script)
mysql (Enabled for apache2 by maintainer script)
mysql (Enabled for cli by maintainer script)
mysqli (Enabled for apache2 by maintainer script)
mysqli (Enabled for cli by maintainer script)
pspell (Enabled for apache2 by maintainer script)
pspell (Enabled for cli by maintainer script)
gd (Enabled for apache2 by maintainer script)
gd (Enabled for cli by maintainer script)
json (Enabled for apache2 by maintainer script)
json (Enabled for cli by maintainer script)
intl (Enabled for apache2 by maintainer script)
intl (Enabled for cli by maintainer script)
pdo_sqlite (Enabled for apache2 by maintainer script)
pdo_sqlite (Enabled for cli by maintainer script)
mcrypt (Enabled for apache2 by maintainer script)
mcrypt (Enabled for cli by maintainer script)
pdo_mysql (Enabled for apache2 by maintainer script)
pdo_mysql (Enabled for cli by maintainer script)
++++ Configuration files: ++++
**** /etc/php5/mods-available/pdo.ini ****
extension=pdo.so
**** /etc/php5/mods-available/opcache.ini ****
zend_extension=opcache.so
-- System Information:
Debian Release: jessie/sid
APT prefers testing
APT policy: (550, 'testing'), (500, 'testing-updates'), (500, 'stable-updates'), (450, 'unstable'), (450, 'stable'), (445, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 3.15.1 (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages php5 depends on:
ii libapache2-mod-php5 5.6.0~rc4+dfsg-4
ii php5-common 5.6.0~rc4+dfsg-4
php5 recommends no packages.
php5 suggests no packages.
Versions of packages php5-common depends on:
ii libc6 2.19-9
ii lsof 4.86+dfsg-1
ii psmisc 22.21-2
ii sed 4.2.2-4
ii ucf 3.0030
Versions of packages php5-common suggests:
pn php5-user-cache <none>
-- no debconf information
Information forwarded
to debian-bugs-dist@lists.debian.org, Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>:
Bug#759381; Package php5-common.
(Thu, 28 Aug 2014 14:27:05 GMT) (full text, mbox, link).
Acknowledgement sent
to Lior Kaplan <kaplan@debian.org>:
Extra info received and forwarded to list. Copy sent to Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>.
(Thu, 28 Aug 2014 14:27:05 GMT) (full text, mbox, link).
Message #10 received at 759381@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
This problematic commit was reverted between RC4 and 5.6.0 final. Thanks
for reporting!
Kaplan
On Wed, Aug 27, 2014 at 12:08 AM, Darkhorse Winterwolf <dh@winterwolf.co.uk>
wrote:
> Package: php5-common
> Version: 5.6.0~rc4+dfsg-4
> Severity: normal
>
>
> Hello,
>
> I upgraded a number of packages over the weekend, and found that
> RoundCube stopped working. After rather a lot of digging around, it seems
> I'm not alone, and the problem actually lies with PHP, specifically
> version 5.6.0 RC4. Just to check this, RoundCube itself was not updated,
> neither was my IMAP server, and by using the same RoundCube version with
> an older PHP version, the bug disappears.
>
> The problem appears to be described better than I probably could at this
> URL:
>
> http://bugs.horde.org/ticket/13491
>
> At the moment, this breaks RoundCube in Jessie and Sid systems when
> connecting to an IMAP server using TLS. It might well break other things
> too, but this is what's affecting me. It seems that it should be assigned
> to PHP rather than RoundCube from what I've read, but feel free to
> reassign if you disagree. Similarly, if I can provide any further
> information, just let me know and I'll update the report as soon as
> possible.
>
> All the best,
> -DH.
>
>
>
> -- Package-specific info:
> ==== Additional PHP 5 information ====
>
> ++++ PHP 5 SAPI (php5query -S): ++++
> apache2
> cli
>
> ++++ PHP 5 Extensions (php5query -M -v): ++++
> sqlite3 (Enabled for apache2 by maintainer script)
> sqlite3 (Enabled for cli by maintainer script)
> pdo (Enabled for apache2 by maintainer script)
> pdo (Enabled for cli by maintainer script)
> readline (Enabled for apache2 by maintainer script)
> readline (Enabled for cli by maintainer script)
> opcache (Enabled for apache2 by maintainer script)
> opcache (Enabled for cli by maintainer script)
> imap (Enabled for apache2 by maintainer script)
> imap (Enabled for cli by maintainer script)
> mysql (Enabled for apache2 by maintainer script)
> mysql (Enabled for cli by maintainer script)
> mysqli (Enabled for apache2 by maintainer script)
> mysqli (Enabled for cli by maintainer script)
> pspell (Enabled for apache2 by maintainer script)
> pspell (Enabled for cli by maintainer script)
> gd (Enabled for apache2 by maintainer script)
> gd (Enabled for cli by maintainer script)
> json (Enabled for apache2 by maintainer script)
> json (Enabled for cli by maintainer script)
> intl (Enabled for apache2 by maintainer script)
> intl (Enabled for cli by maintainer script)
> pdo_sqlite (Enabled for apache2 by maintainer script)
> pdo_sqlite (Enabled for cli by maintainer script)
> mcrypt (Enabled for apache2 by maintainer script)
> mcrypt (Enabled for cli by maintainer script)
> pdo_mysql (Enabled for apache2 by maintainer script)
> pdo_mysql (Enabled for cli by maintainer script)
>
> ++++ Configuration files: ++++
> **** /etc/php5/mods-available/pdo.ini ****
> extension=pdo.so
>
> **** /etc/php5/mods-available/opcache.ini ****
> zend_extension=opcache.so
>
>
> -- System Information:
> Debian Release: jessie/sid
> APT prefers testing
> APT policy: (550, 'testing'), (500, 'testing-updates'), (500,
> 'stable-updates'), (450, 'unstable'), (450, 'stable'), (445, 'experimental')
> Architecture: amd64 (x86_64)
>
> Kernel: Linux 3.15.1 (SMP w/2 CPU cores)
> Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/dash
>
> Versions of packages php5 depends on:
> ii libapache2-mod-php5 5.6.0~rc4+dfsg-4
> ii php5-common 5.6.0~rc4+dfsg-4
>
> php5 recommends no packages.
>
> php5 suggests no packages.
>
> Versions of packages php5-common depends on:
> ii libc6 2.19-9
> ii lsof 4.86+dfsg-1
> ii psmisc 22.21-2
> ii sed 4.2.2-4
> ii ucf 3.0030
>
> Versions of packages php5-common suggests:
> pn php5-user-cache <none>
>
> -- no debconf information
>
> _______________________________________________
> pkg-php-maint mailing list
> pkg-php-maint@lists.alioth.debian.org
> http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-php-maint
>
[Message part 2 (text/html, inline)]
Information forwarded
to debian-bugs-dist@lists.debian.org, Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>:
Bug#759381; Package php5-common.
(Thu, 28 Aug 2014 14:57:13 GMT) (full text, mbox, link).
Acknowledgement sent
to Fabian Fagerholm <fabbe@paniq.net>:
Extra info received and forwarded to list. Copy sent to Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>.
(Thu, 28 Aug 2014 14:57:13 GMT) (full text, mbox, link).
Message #15 received at 759381@bugs.debian.org (full text, mbox, reply):
Control: retitle -1 php5: PHP 5.6.0 RC3/RC4 breaks SSL/TLS connections
Control: found -1 5.6.0~rc3+dfsg-2
Control: found -1 5.6.0~rc4+dfsg-1
Control: found -1 5.6.0~rc4+dfsg-2
Control: found -1 5.6.0~rc4+dfsg-3
Control: found -1 5.6.0~rc4+dfsg-4
Control: fixed -1 5.6.0~rc3+dfsg-1
Control: tags -1 upstream
Control: forwarded -1 https://bugs.php.net/bug.php?id=41631
Control: severity -1 important
I have been able to reproduce this bug in the indicated versions of
php5, and confirmed that it does not occur in 5.6.0~rc3+dfsg+1.
Hopefully this information helps other people who are experiencing this
problem to find workarounds (i.e. downgrade to the last working version)
and to track when this is fixed in a new Debian package.
Setting severity to important since this does have a major effect on the
usability of php5 for everyone using SSL/TLS.
Some additional references:
http://comments.gmane.org/gmane.comp.horde.user/36106
https://github.com/php/php-src/commit/6569db88081562f68a4f79e52cba83482bdf05fc
--
Fabian Fagerholm <fabbe@paniq.net>
Changed Bug title to 'php5: PHP 5.6.0 RC3/RC4 breaks SSL/TLS connections' from 'php5: TLS connections broken in 5.6.0 RC4'
Request was from Fabian Fagerholm <fabbe@paniq.net>
to 759381-submit@bugs.debian.org.
(Thu, 28 Aug 2014 14:57:13 GMT) (full text, mbox, link).
Marked as found in versions php5/5.6.0~rc3+dfsg-2.
Request was from Fabian Fagerholm <fabbe@paniq.net>
to 759381-submit@bugs.debian.org.
(Thu, 28 Aug 2014 14:57:14 GMT) (full text, mbox, link).
Marked as found in versions php5/5.6.0~rc4+dfsg-1.
Request was from Fabian Fagerholm <fabbe@paniq.net>
to 759381-submit@bugs.debian.org.
(Thu, 28 Aug 2014 14:57:15 GMT) (full text, mbox, link).
Marked as found in versions php5/5.6.0~rc4+dfsg-2.
Request was from Fabian Fagerholm <fabbe@paniq.net>
to 759381-submit@bugs.debian.org.
(Thu, 28 Aug 2014 14:57:16 GMT) (full text, mbox, link).
Marked as found in versions php5/5.6.0~rc4+dfsg-3.
Request was from Fabian Fagerholm <fabbe@paniq.net>
to 759381-submit@bugs.debian.org.
(Thu, 28 Aug 2014 14:57:17 GMT) (full text, mbox, link).
Marked as fixed in versions php5/5.6.0~rc3+dfsg-1.
Request was from Fabian Fagerholm <fabbe@paniq.net>
to 759381-submit@bugs.debian.org.
(Thu, 28 Aug 2014 14:57:18 GMT) (full text, mbox, link).
Added tag(s) upstream.
Request was from Fabian Fagerholm <fabbe@paniq.net>
to 759381-submit@bugs.debian.org.
(Thu, 28 Aug 2014 14:57:19 GMT) (full text, mbox, link).
Severity set to 'important' from 'normal'
Request was from Fabian Fagerholm <fabbe@paniq.net>
to 759381-submit@bugs.debian.org.
(Thu, 28 Aug 2014 14:57:21 GMT) (full text, mbox, link).
Reply sent
to Ondřej Surý <ondrej@sury.org>:
You have taken responsibility.
(Thu, 28 Aug 2014 18:51:18 GMT) (full text, mbox, link).
Notification sent
to Darkhorse Winterwolf <dh@winterwolf.co.uk>:
Bug acknowledged by developer.
(Thu, 28 Aug 2014 18:51:18 GMT) (full text, mbox, link).
Message #38 received at 759381-done@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
Version: 5.6.0+dfsg-1
And it was reverted because of your reports, so double thanks!
Ondrej
On Thu, Aug 28, 2014, at 16:23, Lior Kaplan wrote:
This problematic commit was reverted between RC4 and 5.6.0
final. Thanks for reporting!
Kaplan
On Wed, Aug 27, 2014 at 12:08 AM, Darkhorse Winterwolf
<[1]dh@winterwolf.co.uk> wrote:
Package: php5-common
Version: 5.6.0~rc4+dfsg-4
Severity: normal
Hello,
I upgraded a number of packages over the weekend, and found
that
RoundCube stopped working. After rather a lot of digging
around, it seems
I'm not alone, and the problem actually lies with PHP,
specifically
version 5.6.0 RC4. Just to check this, RoundCube itself was
not updated,
neither was my IMAP server, and by using the same RoundCube
version with
an older PHP version, the bug disappears.
The problem appears to be described better than I probably
could at this
URL:
[2]http://bugs.horde.org/ticket/13491
At the moment, this breaks RoundCube in Jessie and Sid
systems when
connecting to an IMAP server using TLS. It might well break
other things
too, but this is what's affecting me. It seems that it
should be assigned
to PHP rather than RoundCube from what I've read, but feel
free to
reassign if you disagree. Similarly, if I can provide any
further
information, just let me know and I'll update the report as
soon as
possible.
All the best,
-DH.
-- Package-specific info:
==== Additional PHP 5 information ====
++++ PHP 5 SAPI (php5query -S): ++++
apache2
cli
++++ PHP 5 Extensions (php5query -M -v): ++++
sqlite3 (Enabled for apache2 by maintainer script)
sqlite3 (Enabled for cli by maintainer script)
pdo (Enabled for apache2 by maintainer script)
pdo (Enabled for cli by maintainer script)
readline (Enabled for apache2 by maintainer script)
readline (Enabled for cli by maintainer script)
opcache (Enabled for apache2 by maintainer script)
opcache (Enabled for cli by maintainer script)
imap (Enabled for apache2 by maintainer script)
imap (Enabled for cli by maintainer script)
mysql (Enabled for apache2 by maintainer script)
mysql (Enabled for cli by maintainer script)
mysqli (Enabled for apache2 by maintainer script)
mysqli (Enabled for cli by maintainer script)
pspell (Enabled for apache2 by maintainer script)
pspell (Enabled for cli by maintainer script)
gd (Enabled for apache2 by maintainer script)
gd (Enabled for cli by maintainer script)
json (Enabled for apache2 by maintainer script)
json (Enabled for cli by maintainer script)
intl (Enabled for apache2 by maintainer script)
intl (Enabled for cli by maintainer script)
pdo_sqlite (Enabled for apache2 by maintainer script)
pdo_sqlite (Enabled for cli by maintainer script)
mcrypt (Enabled for apache2 by maintainer script)
mcrypt (Enabled for cli by maintainer script)
pdo_mysql (Enabled for apache2 by maintainer script)
pdo_mysql (Enabled for cli by maintainer script)
++++ Configuration files: ++++
**** /etc/php5/mods-available/pdo.ini ****
extension=pdo.so
**** /etc/php5/mods-available/opcache.ini ****
zend_extension=opcache.so
-- System Information:
Debian Release: jessie/sid
APT prefers testing
APT policy: (550, 'testing'), (500, 'testing-updates'),
(500, 'stable-updates'), (450, 'unstable'), (450, 'stable'),
(445, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 3.15.1 (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages php5 depends on:
ii libapache2-mod-php5 5.6.0~rc4+dfsg-4
ii php5-common 5.6.0~rc4+dfsg-4
php5 recommends no packages.
php5 suggests no packages.
Versions of packages php5-common depends on:
ii libc6 2.19-9
ii lsof 4.86+dfsg-1
ii psmisc 22.21-2
ii sed 4.2.2-4
ii ucf 3.0030
Versions of packages php5-common suggests:
pn php5-user-cache <none>
-- no debconf information
_______________________________________________
pkg-php-maint mailing list
[3]pkg-php-maint@lists.alioth.debian.org
[4]http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/p
kg-php-maint
_______________________________________________
pkg-php-maint mailing list
[5]pkg-php-maint@lists.alioth.debian.org
[6]http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-
php-maint
--
Ondřej Surý <ondrej@sury.org>
Knot DNS (https://www.knot-dns.cz/) – a high-performance DNS
server
References
1. mailto:dh@winterwolf.co.uk
2. http://bugs.horde.org/ticket/13491
3. mailto:pkg-php-maint@lists.alioth.debian.org
4. http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-php-maint
5. mailto:pkg-php-maint@lists.alioth.debian.org
6. http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-php-maint
[Message part 2 (text/html, inline)]
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Sat, 04 Oct 2014 07:37:07 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Sun Jul 2 01:39:40 2023;
Machine Name:
bembo
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.