mariadb/mariadb-10.2.10-disable_openssl_compatibility_check.patch

PATCH-P1-SUSE: Fix running with our patched openssl

- Disable openssl compatibility checking
  * the check uses CRYPTO_set_mem_functions() to set debugging
    memory allocation function. The setting only succeeds if no allocation
    was done before. Our fips self-tests, which are run from the library
    constructor, however, do allocate memory, so the subsequent call to
    CRYPTO_set_mem_functions causes the compatibility check to fail

Maintainer: Vitezslav Cizek <vcizek@suse.com>

Index: mariadb-10.2.10/mysys_ssl/openssl.c
===================================================================
--- mariadb-10.2.10.orig/mysys_ssl/openssl.c	2017-10-30 09:10:45.000000000 +0100
+++ mariadb-10.2.10/mysys_ssl/openssl.c	2017-11-29 13:43:20.022236791 +0100
@@ -47,26 +47,6 @@ static void *coc_malloc(size_t size, con
 
 int check_openssl_compatibility()
 {
-  EVP_CIPHER_CTX *evp_ctx;
-  EVP_MD_CTX     *md5_ctx;
-
-  if (!CRYPTO_set_mem_functions(coc_malloc, NULL, NULL))
-    return 0;
-
-  testing= 1;
-  alloc_size= alloc_count= 0;
-  evp_ctx= EVP_CIPHER_CTX_new();
-  EVP_CIPHER_CTX_free(evp_ctx);
-  if (alloc_count != 1 || !alloc_size || alloc_size > EVP_CIPHER_CTX_SIZE)
-    return 1;
-
-  alloc_size= alloc_count= 0;
-  md5_ctx= EVP_MD_CTX_create();
-  EVP_MD_CTX_destroy(md5_ctx);
-  if (alloc_count != 1 || !alloc_size || alloc_size > EVP_MD_CTX_SIZE)
-    return 1;
-
-  testing= 0;
   return 0;
 }
 #endif
Accepting request 563119 from home:kstreitova:branches:server:database - update to 10.2.12 GA * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10212-release-notes/ https://mariadb.com/kb/en/library/mariadb-10212-changelog/ - remove mysql-community-server-5.5.6-safe-process-in-bin.patch becuase this moving is done in the specfile - get rid of the archive with patches (remove mysql-patches.tar.xz and series files), handle patches in the standard way - add comments to the section with removing unused files (based on https://lists.launchpad.net/maria-developers/msg11028.html) - put rm statements together - install the new upstream systemd-tmpfiles configuration file 'tmpfiles.conf' and rename it to 'mariadb.conf' in order to follow the manual - remove the new upstream systemd-sysusers configuration file as we handle creating of mysql user in the specfile - mysql.service: remove calling of the wait function and let systemd to do this job. Switch from 'Type=simple' to 'Type=notify' and add TimeoutSec=300 - rename unit files from mysql to mariadb and add mysql alias for the backward compatibility [bsc#1067443] * mysql.service -> mariadb.service * mysql.target -> mariadb.target * mysql@.service -> mariadb@.service - remove configuration-tweaks.tar.xz and move configuration to my.ini/my.cnf file (omit default_plugins.cnf as all configuration here was commented out) - add a numeric prefix for galera.cnf file in order to allow users to speficy in which order the configs will be loaded within the my.cnf.d directory [bsc#1055268] OBS-URL: https://build.opensuse.org/request/show/563119 OBS-URL: https://build.opensuse.org/package/show/server:database/mariadb?expand=0&rev=203 2018-01-09 19:28:29 +01:00			`PATCH-P1-SUSE: Fix running with our patched openssl`

			`- Disable openssl compatibility checking`
			`* the check uses CRYPTO_set_mem_functions() to set debugging`
			`memory allocation function. The setting only succeeds if no allocation`
			`was done before. Our fips self-tests, which are run from the library`
			`constructor, however, do allocate memory, so the subsequent call to`
			`CRYPTO_set_mem_functions causes the compatibility check to fail`

			`Maintainer: Vitezslav Cizek <vcizek@suse.com>`

			`Index: mariadb-10.2.10/mysys_ssl/openssl.c`
			`===================================================================`
			`--- mariadb-10.2.10.orig/mysys_ssl/openssl.c 2017-10-30 09:10:45.000000000 +0100`
			`+++ mariadb-10.2.10/mysys_ssl/openssl.c 2017-11-29 13:43:20.022236791 +0100`
			`@@ -47,26 +47,6 @@ static void *coc_malloc(size_t size, con`

			`int check_openssl_compatibility()`
			`{`
			`- EVP_CIPHER_CTX *evp_ctx;`
			`- EVP_MD_CTX *md5_ctx;`
			`-`
			`- if (!CRYPTO_set_mem_functions(coc_malloc, NULL, NULL))`
Accepting request 579672 from home:kstreitova:branches:server:database - update to 10.2.13 GA * notable changes * InnoDB updated to 5.7.21 * Galera wsrep library updated to 25.3.23 * MDEV-13869 - MariaDB slow start * MDEV-14611 - ALTER TABLE EXCHANGE PARTITION does not work properly when used with DATA DIRECTORY * MDEV-15249 - Crash in MVCC read after IMPORT TABLESPACE * Foreign key bugs: * MDEV-15199 - Referential integrity broken in ON DELETE CASCADE/MDEV-14222 Unnecessary 'cascade' memory allocation for every updated row * MDEV-15219 - FOREIGN KEY CASCADE or SET NULL operations will not resume after lock wait * MDEV-15042 - INSERT ON DUPLICATE KEY UPDATE produces error 1032 (Can't find record) * MDEV-13205 - InnoDB: Failing assertion: !dict_index_is_online_ddl(index) upon ALTER TABLE * MDEV-14958 - Merge new release of InnoDB MySQL 5.7.21 to 10.2 * MDEV-15165 - InnoDB purge for index on virtual column is trying to access an incomplete record * MDEV-15143 - InnoDB: Rollback of trx with id 0 completed * MDEV-11415 - Remove excessive undo logging during ALTER TABLE…ALGORITHM=COPY * MDEV-15016 - multiple page cleaner threads use a lot of CPU * MDEV-14941 - Timeouts on persistent statistics tables caused by MDEV-14511 * MDEV-14985 - innodb_undo_log_truncate may be blocked if transactions were recovered at startup * MDEV-14441 - InnoDB hangs when setting OBS-URL: https://build.opensuse.org/request/show/579672 OBS-URL: https://build.opensuse.org/package/show/server:database/mariadb?expand=0&rev=207 2018-02-24 00:02:16 +01:00			`- return 0;`
Accepting request 563119 from home:kstreitova:branches:server:database - update to 10.2.12 GA * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-10212-release-notes/ https://mariadb.com/kb/en/library/mariadb-10212-changelog/ - remove mysql-community-server-5.5.6-safe-process-in-bin.patch becuase this moving is done in the specfile - get rid of the archive with patches (remove mysql-patches.tar.xz and series files), handle patches in the standard way - add comments to the section with removing unused files (based on https://lists.launchpad.net/maria-developers/msg11028.html) - put rm statements together - install the new upstream systemd-tmpfiles configuration file 'tmpfiles.conf' and rename it to 'mariadb.conf' in order to follow the manual - remove the new upstream systemd-sysusers configuration file as we handle creating of mysql user in the specfile - mysql.service: remove calling of the wait function and let systemd to do this job. Switch from 'Type=simple' to 'Type=notify' and add TimeoutSec=300 - rename unit files from mysql to mariadb and add mysql alias for the backward compatibility [bsc#1067443] * mysql.service -> mariadb.service * mysql.target -> mariadb.target * mysql@.service -> mariadb@.service - remove configuration-tweaks.tar.xz and move configuration to my.ini/my.cnf file (omit default_plugins.cnf as all configuration here was commented out) - add a numeric prefix for galera.cnf file in order to allow users to speficy in which order the configs will be loaded within the my.cnf.d directory [bsc#1055268] OBS-URL: https://build.opensuse.org/request/show/563119 OBS-URL: https://build.opensuse.org/package/show/server:database/mariadb?expand=0&rev=203 2018-01-09 19:28:29 +01:00			`-`
			`- testing= 1;`
			`- alloc_size= alloc_count= 0;`
			`- evp_ctx= EVP_CIPHER_CTX_new();`
			`- EVP_CIPHER_CTX_free(evp_ctx);`
			`- if (alloc_count != 1 \|\| !alloc_size \|\| alloc_size > EVP_CIPHER_CTX_SIZE)`
			`- return 1;`
			`-`
			`- alloc_size= alloc_count= 0;`
			`- md5_ctx= EVP_MD_CTX_create();`
			`- EVP_MD_CTX_destroy(md5_ctx);`
			`- if (alloc_count != 1 \|\| !alloc_size \|\| alloc_size > EVP_MD_CTX_SIZE)`
			`- return 1;`
			`-`
			`- testing= 0;`
			`return 0;`
			`}`
			`#endif`