Debian Bug report logs - #996174
wget: Spurious SSL_INIT in 1.21.2-1

version graph

Package: wget; Maintainer for wget is Noël Köthe <noel@debian.org>; Source for wget is src:wget (PTS, buildd, popcon).

Reported by: Bob Proulx <bob@proulx.com>

Date: Mon, 11 Oct 2021 19:15:02 UTC

Severity: normal

Tags: confirmed, patch

Found in version wget/1.21.2-1

Fixed in version wget/1.21.2-2

Done: Noël Köthe <noel@debian.org>

Bug is archived. No further changes may be made.

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to debian-bugs-dist@lists.debian.org, Noël Köthe <noel@debian.org>:
Bug#996174; Package wget. (Mon, 11 Oct 2021 19:15:04 GMT) (full text, mbox, link).

Acknowledgement sent to Bob Proulx <bob@proulx.com>:
New Bug report received and forwarded. Copy sent to Noël Köthe <noel@debian.org>. (Mon, 11 Oct 2021 19:15:04 GMT) (full text, mbox, link).

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Bob Proulx <bob@proulx.com>
To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: wget: Spurious SSL_INIT in 1.21.2-1
Date: Mon, 11 Oct 2021 13:06:11 -0600
Package: wget
Version: 1.21.2-1
Severity: normal

In today's daily upgrade wget 1.21.2-1 was installed and now emits a
spurious "SSL_INIT" message.  This is breaking scripts. :-(

    $ wget -q -O/dev/null https://www.example.com/
    SSL_INIT

A temporary workaround is to downgrade to the previous and hold it.

    apt-get install wget=1.21-1+b1  # temporary hack
    apt-mark hold wget              # temporary hack

Thank you for maintaining wget.

Bob


-- System Information:
Debian Release: bookworm/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-6-amd64 (SMP w/4 CPU threads)
Kernel taint flags: TAINT_FIRMWARE_WORKAROUND
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages wget depends on:
ii  libc6         2.32-4
ii  libgnutls30   3.7.2-2
ii  libidn2-0     2.3.2-2
ii  libnettle8    3.7.3-1
ii  libpcre2-8-0  10.36-2
ii  libpsl5       0.21.0-1.2
ii  libuuid1      2.37.2-3
ii  zlib1g        1:1.2.11.dfsg-2

Versions of packages wget recommends:
ii  ca-certificates  20211004

wget suggests no packages.

-- no debconf information

Information forwarded to debian-bugs-dist@lists.debian.org, Noël Köthe <noel@debian.org>:
Bug#996174; Package wget. (Mon, 11 Oct 2021 19:51:02 GMT) (full text, mbox, link).

Acknowledgement sent to Bob Proulx <bob@proulx.com>:
Extra info received and forwarded to list. Copy sent to Noël Köthe <noel@debian.org>. (Mon, 11 Oct 2021 19:51:02 GMT) (full text, mbox, link).

Message #10 received at 996174@bugs.debian.org (full text, mbox, reply):

From: Bob Proulx <bob@proulx.com>
To: 996174@bugs.debian.org
Subject: Re: wget: Spurious SSL_INIT in 1.21.2-1
Date: Mon, 11 Oct 2021 13:41:18 -0600
Bob Proulx wrote:
> In today's daily upgrade wget 1.21.2-1 was installed and now emits a
> spurious "SSL_INIT" message.  This is breaking scripts. :-(
> 
>     $ wget -q -O/dev/null https://www.example.com/
>     SSL_INIT

Already fixed upstream.

    https://git.savannah.gnu.org/cgit/wget.git/commit/?id=3ea9658c072fa1dc87aec7af45393b46904b143f

The problematic commit that added the message.

    https://git.savannah.gnu.org/cgit/wget.git/commit/src/gnutls.c?id=5fe8d26904880ab59b2343f31ff7399edbbc43f1

However I do note that upstream has not yet made a release since
v1.21.2 that contains the above fix.

Bob

Information forwarded to debian-bugs-dist@lists.debian.org, Noël Köthe <noel@debian.org>:
Bug#996174; Package wget. (Mon, 11 Oct 2021 20:06:03 GMT) (full text, mbox, link).

Acknowledgement sent to Bob Proulx <bob@proulx.com>:
Extra info received and forwarded to list. Copy sent to Noël Köthe <noel@debian.org>. (Mon, 11 Oct 2021 20:06:03 GMT) (full text, mbox, link).

Message #15 received at 996174@bugs.debian.org (full text, mbox, reply):

From: Bob Proulx <bob@proulx.com>
To: 996174@bugs.debian.org
Subject: Re: wget: Spurious SSL_INIT in 1.21.2-1
Date: Mon, 11 Oct 2021 14:03:15 -0600
I posted an update to the upstream bug tracker.

    https://savannah.gnu.org/bugs/?61125

Information forwarded to debian-bugs-dist@lists.debian.org, Noël Köthe <noel@debian.org>:
Bug#996174; Package wget. (Wed, 13 Oct 2021 14:15:04 GMT) (full text, mbox, link).

Acknowledgement sent to Harald Dunkel <harri@afaics.de>:
Extra info received and forwarded to list. Copy sent to Noël Köthe <noel@debian.org>. (Wed, 13 Oct 2021 14:15:04 GMT) (full text, mbox, link).

Message #20 received at 996174@bugs.debian.org (full text, mbox, reply):

From: Harald Dunkel <harri@afaics.de>
To: 996174@bugs.debian.org
Subject: Re: wget: Spurious SSL_INIT in 1.21.2-1
Date: Wed, 13 Oct 2021 16:07:37 +0200
metoo

This bug triggers a bazillion EMails for cron jobs that are usually
very quiet, except for a catastrophe.

Please fix.


Thank you very much
Harri

Information forwarded to debian-bugs-dist@lists.debian.org, Noël Köthe <noel@debian.org>:
Bug#996174; Package wget. (Wed, 13 Oct 2021 14:39:02 GMT) (full text, mbox, link).

Acknowledgement sent to Adam Borowski <kilobyte@angband.pl>:
Extra info received and forwarded to list. Copy sent to Noël Köthe <noel@debian.org>. (Wed, 13 Oct 2021 14:39:02 GMT) (full text, mbox, link).

Message #25 received at 996174@bugs.debian.org (full text, mbox, reply):

From: Adam Borowski <kilobyte@angband.pl>
To: 996174@bugs.debian.org
Subject: please cherry-pick for now
Date: Wed, 13 Oct 2021 16:36:05 +0200
> Already fixed upstream.

>  https://git.savannah.gnu.org/cgit/wget.git/commit/?id=3ea9658c072fa1dc87aec7af45393b46904b143f

> However I do note that upstream has not yet made a release since
> v1.21.2 that contains the above fix.

Given the fallout, could you please cherry-pick the fix and upload?


Meow!
-- 
⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ Polexit is brewing?  Let's skip that smelly Polsha and reactivate
⢿⡄⠘⠷⠚⠋⠀ the Free City of Danzig and/or reapply to the Hansa.
⠈⠳⣄⠀⠀⠀⠀

Information forwarded to debian-bugs-dist@lists.debian.org:
Bug#996174; Package wget. (Wed, 13 Oct 2021 15:00:04 GMT) (full text, mbox, link).

Acknowledgement sent to Noël Köthe <noel@debian.org>:
Extra info received and forwarded to list. (Wed, 13 Oct 2021 15:00:04 GMT) (full text, mbox, link).

Message #30 received at 996174@bugs.debian.org (full text, mbox, reply):

From: Noël Köthe <noel@debian.org>
To: Adam Borowski <kilobyte@angband.pl>, 996174@bugs.debian.org
Subject: Re: Bug#996174: please cherry-pick for now
Date: Wed, 13 Oct 2021 16:49:14 +0200
[Message part 1 (text/plain, inline)]
Hello,

Am Mittwoch, dem 13.10.2021 um 16:36 +0200 schrieb Adam Borowski:
> > Already fixed upstream.
> 
> >  
> > https://git.savannah.gnu.org/cgit/wget.git/commit/?id=3ea9658c072fa1dc87aec7af45393b46904b143f
> 
> > However I do note that upstream has not yet made a release since
> > v1.21.2 that contains the above fix.
> 
> Given the fallout, could you please cherry-pick the fix and upload?

Yes, building already 1.21.2-2 with this patch.

Regards

	Noel

[signature.asc (application/pgp-signature, inline)]

Information forwarded to debian-bugs-dist@lists.debian.org:
Bug#996174; Package wget. (Wed, 13 Oct 2021 15:15:04 GMT) (full text, mbox, link).

Acknowledgement sent to Noël Köthe <noel@debian.org>:
Extra info received and forwarded to list. (Wed, 13 Oct 2021 15:15:04 GMT) (full text, mbox, link).

Message #35 received at 996174@bugs.debian.org (full text, mbox, reply):

From: Noël Köthe <noel@debian.org>
To: Bob Proulx <bob@proulx.com>, 996174@bugs.debian.org
Cc: control <control@bugs.debian.org>
Subject: Re: Bug#996174: wget: Spurious SSL_INIT in 1.21.2-1
Date: Wed, 13 Oct 2021 17:04:38 +0200
[Message part 1 (text/plain, inline)]
tags 996174 + confirmed patch pending
thanks

Hello Bob,

Am Montag, dem 11.10.2021 um 13:41 -0600 schrieb Bob Proulx:
> Bob Proulx wrote:
> > In today's daily upgrade wget 1.21.2-1 was installed and now emits
> > a
> > spurious "SSL_INIT" message.  This is breaking scripts. :-(
> > 
> >     $ wget -q -O/dev/null https://www.example.com/
> >     SSL_INIT
> 
> Already fixed upstream.
> 
>    
> https://git.savannah.gnu.org/cgit/wget.git/commit/?id=3ea9658c072fa1dc87aec7af45393b46904b143f
> 
> The problematic commit that added the message.
> 
>    
> https://git.savannah.gnu.org/cgit/wget.git/commit/src/gnutls.c?id=5fe8d26904880ab59b2343f31ff7399edbbc43f1
> 
> However I do note that upstream has not yet made a release since
> v1.21.2 that contains the above fix.

Thanks for your research and work. I uploaded a cherry picked fixed
version of wget right now.

Regards

	Noel


[signature.asc (application/pgp-signature, inline)]

Added tag(s) confirmed, patch, and pending. Request was from Noël Köthe <noel@debian.org> to control@bugs.debian.org. (Wed, 13 Oct 2021 15:15:06 GMT) (full text, mbox, link).

Reply sent to Noël Köthe <noel@debian.org>:
You have taken responsibility. (Wed, 13 Oct 2021 15:21:03 GMT) (full text, mbox, link).

Notification sent to Bob Proulx <bob@proulx.com>:
Bug acknowledged by developer. (Wed, 13 Oct 2021 15:21:03 GMT) (full text, mbox, link).

Message #42 received at 996174-close@bugs.debian.org (full text, mbox, reply):

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: 996174-close@bugs.debian.org
Subject: Bug#996174: fixed in wget 1.21.2-2
Date: Wed, 13 Oct 2021 15:19:32 +0000
Source: wget
Source-Version: 1.21.2-2
Done: Noël Köthe <noel@debian.org>

We believe that the bug you reported is fixed in the latest version of
wget, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 996174@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Noël Köthe <noel@debian.org> (supplier of updated wget package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 13 Oct 2021 16:35:25 +0200
Source: wget
Binary: wget wget-dbgsym wget-udeb
Architecture: source amd64
Version: 1.21.2-2
Distribution: unstable
Urgency: medium
Maintainer: Noël Köthe <noel@debian.org>
Changed-By: Noël Köthe <noel@debian.org>
Description:
 wget       - retrieves files from the web
 wget-udeb  - retrieves files from the web (udeb)
Closes: 996174
Changes:
 wget (1.21.2-2) unstable; urgency=medium
 .
   * cherry pick to fix SSL_INIT output wget#61125 closes: Bug#996174
Checksums-Sha1:
 60e8be39a8fcde57929f6f8f404cdc167549cf16 2167 wget_1.21.2-2.dsc
 b073e8c5a3274af01f4991ad50f17dedd5d9dba0 61048 wget_1.21.2-2.debian.tar.xz
 6b03a2566e3120c16e7e166a808f2f47768b9608 689332 wget-dbgsym_1.21.2-2_amd64.deb
 fc22b7eb014bf9d3241d0612956d75740dd07e5f 174484 wget-udeb_1.21.2-2_amd64.udeb
 21b5427a91ad11e3b44bccefb2c3840fc8362501 7289 wget_1.21.2-2_amd64.buildinfo
 403d514cdac11f196646eb82c17e5fbce3a57463 975008 wget_1.21.2-2_amd64.deb
Checksums-Sha256:
 163ced65ad67e242401ff2e0a94350f8865d51cd6b5d3e00b0256396742f13be 2167 wget_1.21.2-2.dsc
 c1eaf8288894ea516db3b0a6f5f733ce5a0f08c8773beac86a17594958fb1323 61048 wget_1.21.2-2.debian.tar.xz
 ab9d6a95a01162dff5c16aaa82e2010b9400c765df282ed144ba8d71f7fbb29b 689332 wget-dbgsym_1.21.2-2_amd64.deb
 bbe6d93f0ecc1fe21a70dd17a9f871b1e8d71d1099921eac82e8098611fb626e 174484 wget-udeb_1.21.2-2_amd64.udeb
 327b56ddcc11adc7f9011c704329c04f71cdd09b71c18482941e2cc631817b07 7289 wget_1.21.2-2_amd64.buildinfo
 7ec49879cbf908181be7382a4a8b6397b8c9f8d5a21c10a69fd41c718189604f 975008 wget_1.21.2-2_amd64.deb
Files:
 9659d09b2e31c644cb8691dd54050ef1 2167 web standard wget_1.21.2-2.dsc
 fcb5ec38cd7eb285c8cdb91fd6c49a8f 61048 web standard wget_1.21.2-2.debian.tar.xz
 61b067aaba6602221d377d7c3e5b1700 689332 debug optional wget-dbgsym_1.21.2-2_amd64.deb
 954600fb358a3ca4479ee1657560cc3c 174484 debian-installer optional wget-udeb_1.21.2-2_amd64.udeb
 70f159035910b30450382e542bb9271c 7289 web standard wget_1.21.2-2_amd64.buildinfo
 7d2f32a4ad91f70003fd07cfc36f8ab5 975008 web standard wget_1.21.2-2_amd64.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEpF5AXAxsgPE/8VIXaMB4voj4DNoFAmFm8y8ACgkQaMB4voj4
DNpdwA/9FW6ERQJk0hiMBn6bvspLDHbYzWj75oJ8Qrj2+IWkSo9PaGE9NkAqboDS
yi4SFuPF1GxY6o5eeZjRUDAALl3Flcc900Y0LjyC2WFPQRYfzwvkQ9kUH5R0o8fn
mrvhg7wVwiBlLwT9bxT1ITA46RCby2jkEFpvQXjQ6MB5bgCe8gSuxkqumR/OF8hv
9/4c/NTuPNqcEc25lt/Fmd5zyGuTGdAJ2RXxSHJ5aGAVaCP1JQe1GfLQ1+XzSQW4
xDSuYsFF3Ppss6W3xAGNhl4KCV8AZIgADRAF+eUp39UrrkIS3Mpn0LtCNWR9y9/W
kjznnVm4RnEj5256cSsrgaiIeLEMjdCdZTsh+1HtSyn1b7S91Wz5OnerkG9eE6xZ
uN316mvTfZH8XURn/65PRimvrHLjwfTeHdu3vJNNeONslNqD14r0igQDs62GGfYu
6lP68xuw5u7bze0ddMlcnMkGovw3GMFexkxKMZeEpHLKc0PYNAkf8SlyvI4Zw+VU
ItB/zHB5yOZ4ppmoXdbXRrzBAIYxoPkPxzIWKrJyXBKd4U7YlgwJHZl5R4j3K/tc
LxcR+SgczDnM4G9qjsD02ef5K6GxNZmdVd4WuV4j8lTjU3KYVG9Z8LjasyPidd1p
ahm60zTiICGD3E3IiyONbDXWx66ig2sgsQA37xBnW7Pqn9ajQbY=
=q6LI
-----END PGP SIGNATURE-----

Bug archived. Request was from Debbugs Internal Request <owner@bugs.debian.org> to internal_control@bugs.debian.org. (Thu, 11 Nov 2021 07:25:53 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Sat Sep 14 06:29:58 2024; Machine Name: buxtehude

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.