PHP 5.4.33 patch for default_socket_timeout issues
PHP 5.4.33 patch for default_socket_timeout issues
Hey there,
A patch was applied in 5.4.33 to fix a longstanding issue with SSL socket timeout problems that inadvertently seems to have caused issues with secure IMAP connections in webmail clients like Horde and Roundcube. From what I gather from the bug report, an update for the patch was supposed to have been included before release but accidentally was not.
Details in the PHP bug report here: https://bugs.php.net/bug.php?id=41631
There seems to be a patch for it available in the bug report thread, but there isn't yet a PHP 5.4.34 release for us to easily apply to resolve the issue!
I'm hoping we might be able to have the Atomic PHP 5.4.33 RPM recompiled with the patch applied and added to the repo for easy updating.
Cheers!
Jordan
A patch was applied in 5.4.33 to fix a longstanding issue with SSL socket timeout problems that inadvertently seems to have caused issues with secure IMAP connections in webmail clients like Horde and Roundcube. From what I gather from the bug report, an update for the patch was supposed to have been included before release but accidentally was not.
Details in the PHP bug report here: https://bugs.php.net/bug.php?id=41631
There seems to be a patch for it available in the bug report thread, but there isn't yet a PHP 5.4.34 release for us to easily apply to resolve the issue!
I'm hoping we might be able to have the Atomic PHP 5.4.33 RPM recompiled with the patch applied and added to the repo for easy updating.
Cheers!
Jordan
Re: PHP 5.4.33 patch for default_socket_timeout issues
We would also appreciate this. The regression in 5.4.33 is pretty bad and the SSL timeout behavior in 5.4.32 (and earlier) was not much better.
-
- Atomicorp Staff - Site Admin
- Posts: 8355
- Joined: Wed Dec 31, 1969 8:00 pm
- Location: earth
- Contact:
Re: PHP 5.4.33 patch for default_socket_timeout issues
Unfortunately the patches up there arent applying to 5.4.33 correctly. I could use some help finding one that works, or fixing this one: https://bugs.php.net/patch-display.php? ... ion=latest
Re: PHP 5.4.33 patch for default_socket_timeout issues
It seems the PHP devs may not be patching this for 5.4.34 and instead will roll back to 5.4.32 behaviour by copying in the old xp_ssl.c file from 5.4.32:scott wrote:Unfortunately the patches up there arent applying to 5.4.33 correctly. I could use some help finding one that works, or fixing this one: https://bugs.php.net/patch-display.php? ... ion=latest
This is from Comment @ [2014-09-26 08:08 UTC] in the above php.net bug report.Since 5.4 is now in security-fixes mode, and the patch for this issue that got into 5.4.33 was not good, I have reverted the 5.4 branch to its 5.4.32 status for xp_ssl.c
Since the patch doesn't seem to be working, perhaps this is a good solution (or at least workaround) for an atomicorp rebuild of 5.4.33 -- essentially revert to 5.4.32 behaviour for that particular file rather than patching it.
-
- Atomicorp Staff - Site Admin
- Posts: 8355
- Joined: Wed Dec 31, 1969 8:00 pm
- Location: earth
- Contact:
Re: PHP 5.4.33 patch for default_socket_timeout issues
Test build 5.4.33-38.1 is going up to atomic-testing now. Let me know if this makes any difference
Re: PHP 5.4.33 patch for default_socket_timeout issues
Did php-5.4.33-39.el6 get this patch included?
I had updated to that, but still seemed to have the same issue. So I then downgraded to this patched version in atomic-testing to resolve the problem. The testing build does, indeed, resolve the issue.
It seems the simplest solution now may be to build php 5.4.34 for release, which also has this patch / reversion included.
For those waiting, but who have updated to -39 already, this will make for a simple downgrade to the patched version:
I had updated to that, but still seemed to have the same issue. So I then downgraded to this patched version in atomic-testing to resolve the problem. The testing build does, indeed, resolve the issue.
It seems the simplest solution now may be to build php 5.4.34 for release, which also has this patch / reversion included.
For those waiting, but who have updated to -39 already, this will make for a simple downgrade to the patched version:
Code: Select all
# yum downgrade php php-common php-cli php-pdo php-fpm php-mbstring php-mcrypt php-gd php-xml php-imap php-mysql php-devel --enablerepo=atomic-testing
-
- Atomicorp Staff - Site Admin
- Posts: 8355
- Joined: Wed Dec 31, 1969 8:00 pm
- Location: earth
- Contact:
Re: PHP 5.4.33 patch for default_socket_timeout issues
How about the 5.4.35 packages?
Re: PHP 5.4.33 patch for default_socket_timeout issues
I would assume the same downgrade workaround that the PHP devs put in 5.4.34 would still be there in 5.4.35. When I posted that I don't think 5.4.35 had been released yet!scott wrote:How about the 5.4.35 packages?
I don't see any builds of 5.4.35 in atomic or atomic-testing though. Is that in the works?
-
- Atomicorp Staff - Site Admin
- Posts: 8355
- Joined: Wed Dec 31, 1969 8:00 pm
- Location: earth
- Contact:
Re: PHP 5.4.33 patch for default_socket_timeout issues
THey went up on monday, cache problem maybe?
Re: PHP 5.4.33 patch for default_socket_timeout issues
Cleared the caches locally; still wouldn't update. So I visited the repo via browser and saw them there. Then I refreshed and they disappeared. Sometimes they're there, sometimes they're not! Is it possible one of your mirrors (the one my server seems to be preferring) is failing to copy the RPMs over?scott wrote:THey went up on monday, cache problem maybe?
Re: PHP 5.4.33 patch for default_socket_timeout issues
All appears well with 5.4.35