[MacPorts] #64036: SoftHSMv2 port causes free-after-free

MacPorts noreply at macports.org
Mon Nov 22 14:52:21 UTC 2021


#64036: SoftHSMv2 port causes free-after-free
------------------------+---------------------
 Reporter:  mouse07410  |      Owner:  (none)
     Type:  defect      |     Status:  new
 Priority:  Normal      |  Milestone:
Component:  ports       |    Version:
 Keywords:              |       Port:  softhsm
------------------------+---------------------
 MacOS Big Sur 11.6.1, Xcode-13.1

 This problem is rather obscure and cumbersome to manifest. It surfaces
 when multiple OpenSSL engines are installed (like in my case).

 The symptom: when the engines finish, during clean OpenSSL crashes with
 SEGV on attempt to free a NULL-pointer. It happens with Macports-installed
 OpenSSL-1.1.1, and with OpenSSL-3.1.dev that I build from sources.
 Surprisingly, it does ''not'' happen with Macports-installed
 OpenSSL-3.0.0.

 How do I know it's this port: when I uninstall {{{softhsm}}} and instead
 build/install SoftHSMv2 from sources, everything works just fine, for all
 the three installed OpenSSL versions, and all the engines involved.

 Here's how I configure SoftHSMv2 myself:
 {{{
 ./configure --prefix=/opt/local -enable-64bit --with-openssl=${OSSL_DIR}
 --with-botan=/opt/local --with-sqlite3=/opt/local --with-objectstore-
 backend-db
 }}}
 {{{OSSL_DIR}}} is where OpenSSL binaries are installed, so in this case
 it's {{{/opt/local/libexec/openssl11}}}.

 Here's the pointer to a detailed description that includes stack traces:
 [https://github.com/OpenSC/libp11/issues/431]

-- 
Ticket URL: <https://trac.macports.org/ticket/64036>
MacPorts <https://www.macports.org/>
Ports system for macOS


More information about the macports-tickets mailing list