New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
NTLM-using test 91 fails on macOS with OpenSSL3 #7779
Comments
The problem seems to origin in OpenSSL DES encryption calls within the Lines 398 to 432 in 06981ba
There are two calls to This is even reproducible in a smaller stand-alone example that I wrote based on the above mentioned function. Ripped out and put in a separate smaller file, built on mac like this (using my own opensslv3 build just to exclude the chances that the homebrew version played tricks with us, but the exact same output is seen with the homebrew installed version):
I built the Linux version similarly:
The test code: des.c Test outputsWhen run on mac:
When run on Linux:
|
Turns out it is the Line 153 in 06981ba
It fails in the second invoke, and returns -2. |
... as the previously used function DES_set_key() will in some cases reject using a key that it deems "weak" which will cause curl to continue using the unitialized buffer content as key instead. Assisted-by: Harry Sintonen Fixes #7779
I did this
I reproduced this CI build error by installing
brew install openssl@3
and then building curl on macOS.The diff starts at index 116 but is fine again from index 137 until the end of the line. curl is expected to send
2FZha5kRaFZ9436GAxPu0
but sendsFBoSh9ZjUs83Se7QqVMFH
instead.I expected the following
Test 91 should work fine.
curl/libcurl version
curl 7.80.0-DEV (x86_64-apple-darwin20.6.0) libcurl/7.80.0-DEV (SecureTransport) OpenSSL/3.0.0 zlib/1.2.11 zstd/1.5.0 libidn2/2.3.2 nghttp2/1.45.1
Release-Date: [unreleased]
Protocols: dict file ftp ftps gopher gophers http https imap imaps ldap ldaps mqtt pop3 pop3s rtsp smb smbs smtp smtps telnet tftp
Features: alt-svc AsynchDNS Debug HSTS HTTP2 HTTPS-proxy IDN IPv6 Largefile libz MultiSSL NTLM NTLM_WB SSL TLS-SRP TrackMemory UnixSockets zstd
operating system
ProductName: macOS
ProductVersion: 11.5.2
BuildVersion: 20G95
The text was updated successfully, but these errors were encountered: