[Bug 252548] security/libtasn1: fail to parse certificate

[bugzilla-noreply at freebsd.org]

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=252548

            Bug ID: 252548
           Summary: security/libtasn1: fail to parse certificate
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Some People
          Priority: ---
         Component: Individual Port(s)
          Assignee: novel at FreeBSD.org
          Reporter: rozhuk.im at gmail.com
          Assignee: novel at FreeBSD.org
             Flags: maintainer-feedback?(novel at FreeBSD.org)
 Attachment #221432 text/plain
         mime type:

Created attachment 221432
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=221432&action=edit
test tool

Not sure that this is a libtasn1 error or clang.

I am update my desktop to current and claws-mail show me certs errors, I dig
inside and found that gnutls_x509_crt_get_fingerprint() fails.
At next step I found that if I rebuild libtasn1 with debug then it fixes
errors.

I wrote test app to reproduce error and check on other systems.
On my home server (12.2) gnutls+libtasn1 was already installed and no errors
happen. But after I rebuild libtasn1 - test app show error.
Now I can not fix because even with -O0 it produces error.


Build test tool:
cc gnutls_test.c -O0 -DDEBUG -I/usr/local/include -L/usr/local/lib -lm -lgnutls
-o gnutls_test

Run test:
./gnutls_test ./pop.mail.ru.995.cert


With:
clang version 11.0.1 (git at github.com:llvm/llvm-project.git
llvmorg-11.0.1-rc2-0-g43ff75f2c3f)
13.0-CURRENT FreeBSD 13.0-CURRENT
even -O2 gives code that does not work.
-O1, -O0 - work.

With:
clang version 10.0.1 (git at github.com:llvm/llvm-project.git
llvmorg-10.0.1-0-gef32c611aa2)
12.2-STABLE 5586a4e13931(stable/12)
does not work with any -O values.

-- 
You are receiving this mail because:
You are the assignee for the bug.