Skip to content

crypto/x509: macos 10.14 SIGSEGV in crypto/x509._Cfunc_FetchPEMRoots [1.12 backport] #32282

Closed
@gopherbot

Description

@gopherbot

@FiloSottile requested issue #28092 to be considered for backport to the next 1.12 minor release.

@gopherbot please open backport issues for https://golang.org/cl/178537.

This fixes a crashing bug with no known workaround for certain macOS environments.

CL 178537 is very minimal and fit for backporting. (The rest of the chain, and CL 178539 in particular, are more speculative and only fix unrecognized roots for which there is a manual workaround, so let's not backport those.)

I feel like we should backport to both 1.11 and 1.12, since without this it's impossible to use 1.11 on certain macOS systems. (Although I guess using the next 1.12 point release could count as a "workaround"?)

Activity

added this to the Go1.12.6 milestone on May 28, 2019
gopherbot

gopherbot commented on May 29, 2019

@gopherbot
ContributorAuthor

Change https://golang.org/cl/179339 mentions this issue: [release-branch.go1.12] crypto/x509: fix value ownership in isSSLPolicy on macOS

julieqiu

julieqiu commented on May 30, 2019

@julieqiu
Member

Approved since this is a serious problem with no workaround. Please follow the instructions at https://github.com/golang/go/wiki/MinorReleases to create the cherrypick CL.

gopherbot

gopherbot commented on Jun 7, 2019

@gopherbot
ContributorAuthor

Closed by merging 3b05c3c to release-branch.go1.12.

added a commit that references this issue on Jun 7, 2019
3b05c3c
locked and limited conversation to collaborators on Jun 6, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    Type

    No type

    Projects

    No projects

    Relationships

    None yet

      Development

      No branches or pull requests

        Participants

        @julieqiu@gopherbot

        Issue actions

          crypto/x509: macos 10.14 SIGSEGV in crypto/x509._Cfunc_FetchPEMRoots [1.12 backport] · Issue #32282 · golang/go