Note: This is a public test instance of Red Hat Bugzilla. The data contained within is a snapshot of the live data so any changes you make will not be reflected in the production Bugzilla. Email is disabled so feel free to test any aspect of the site that you want. File any problems you find or give feedback at bugzilla.redhat.com.

Bug 1838244

Summary: Preloaded nosync.so causes openssl's constructor segfault
Product: Red Hat Enterprise Linux 8 Reporter: Pavel Raiskup <praiskup>
Component: opensslAssignee: Tomas Mraz <tmraz>
Status: CLOSED NOTABUG QA Contact: BaseOS QE Security Team <qe-baseos-security>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: ---CC: fedoraproject, fweimer, jkonecny
Target Milestone: rc   
Target Release: 8.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-05-21 14:46:26 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Pavel Raiskup 2020-05-20 17:47:01 UTC 
We use 'LD_PRELOAD=/usr/lib64/nosync/nosync.so' in mock to speedup chroot
installation.  But newly, with openssl-libs-1.1.1g-1.el8.x86_64, anything
that links against openssl segfaults early.

With openssl-libs-1.1.1c-15.el8.x86_64 it worked just fine.  This breaks
installation of mock chroot from mock bootstrap chroot with 8.3.0 build
chroots where is the new openssl.

You can install nosync.so e.g. from
https://copr.fedorainfracloud.org/coprs/praiskup/test-nosync/

Weird thing is that, despite the new openssl is there, this bug isn't
reproducible in Fedora chroots (so perhaps this is related to some
rhel downstream patch).
Comment 1 Pavel Raiskup 2020-05-20 17:49:27 UTC 
The reproducers are e.g.
LD_PRELOAD=/usr/lib64/nosync/nosync.so curl
LD_PRELOAD=/usr/lib64/nosync/nosync.so rpm
Comment 2 Tomas Mraz 2020-05-20 17:58:52 UTC 
This is a serious bug in the nosync - see the bug 1837809 investigation.

There is no way around the requirement of doing the open() call in constructor in OpenSSL.
Comment 3 Tomas Mraz 2020-05-20 18:01:46 UTC 
We will discuss it within our team but most probably this is going to be WONTFIXed and must be fixed in the nosync.
Comment 4 Tomas Mraz 2020-05-21 14:46:26 UTC 
The fixed nosync packages are in rawhide and testing repos for F32 and F31 - nosync-1.1-8.fcxx

I am closing this as NOTABUG.

Thanks Florian for helping with the investigation and providing the fix for nosync.