Bug #92394 | libmysqlclient enters infinite loop after signal (race condition) | ||
---|---|---|---|
Submitted: | 12 Sep 2018 23:52 | Modified: | 24 Sep 2019 13:58 |
Reporter: | Vincent Busam | Email Updates: | |
Status: | Can't repeat | Impact on me: | |
Category: | MySQL Server: C API (client library) | Severity: | S3 (Non-critical) |
Version: | 5.7.23 | OS: | Ubuntu |
Assigned to: | CPU Architecture: | x86 |
[12 Sep 2018 23:52]
Vincent Busam
[27 Sep 2018 13:29]
MySQL Verification Team
Hi, First of all, are you using our package or somebody else's package or are you building our binaries yourself. If you are not using our package, please use it and see if you can repeat the problem. Same goes for the Python driver for MySQL. Use Connecter/Python instead. Most important of all, the two problematic functions are not part of our code, but a part of your OS' system libraries. We are not maintaining those but are simply finding bugs to them, once that we find them. Our documentation that comes with 5.7.23 package clearly states which SSL library to use and which version.
[27 Sep 2018 21:01]
Vincent Busam
I originally found this using the stock Ubuntu package. I re-verified it with the MySQL source (built with debug symbols to get a useful traceback). The lockup is entirely in the vio/yassl code included with the MySQL source distribution. For a work-around we are blocking signals while entering into libmysqlclient calls.
[28 Sep 2018 12:02]
MySQL Verification Team
Hi, Once again, please download and try our server and client binaries that you can download from our site. Also use our Connector/Python. For your information, we have switched to OpenSSL.
[29 Oct 2018 1:00]
Bugs System
No feedback was provided for this bug for over a month, so it is being suspended automatically. If you are able to provide the information that was originally requested, please do so and change the status of the bug back to "Open".
[13 Sep 2019 18:11]
Nicholas Williams
Can someone advise which versions of the client library use YaSSL and which use OpenSSL? I'm having a hard time finding that information on the Oracle/MySQL websites. Our organization is also facing this bug and it's causing pretty big problems for us, so we're trying to figure out how to get around it, but we need to know which versions have YaSSL (where the bug is) in order to figure that out.
[24 Sep 2019 13:58]
MySQL Verification Team
Hi, Please, be advised that this is not a forum for the free support. It is a forum for the bugs with fully repeatable test cases. The info that you are seeking is available in our Reference Manual and in the Release Notes.