From owner-freebsd-bugs@FreeBSD.ORG  Fri Sep  7 08:00:09 2012
Return-Path: <owner-freebsd-bugs@FreeBSD.ORG>
Delivered-To: freebsd-bugs@hub.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 198981065670
	for <freebsd-bugs@hub.freebsd.org>;
	Fri,  7 Sep 2012 08:00:09 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
	[IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id D68E98FC15
	for <freebsd-bugs@hub.freebsd.org>;
	Fri,  7 Sep 2012 08:00:08 +0000 (UTC)
Received: from freefall.freebsd.org (localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q87808FR093550
	for <freebsd-bugs@freefall.freebsd.org>; Fri, 7 Sep 2012 08:00:08 GMT
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q87808Fc093541;
	Fri, 7 Sep 2012 08:00:08 GMT (envelope-from gnats)
Resent-Date: Fri, 7 Sep 2012 08:00:08 GMT
Resent-Message-Id: <201209070800.q87808Fc093541@freefall.freebsd.org>
Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer)
Resent-To: freebsd-bugs@FreeBSD.org
Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org,
	Oliver Hartmann <ohartman@zedat.fu-berlin.de>
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id E112F106564A
	for <freebsd-gnats-submit@FreeBSD.org>;
	Fri,  7 Sep 2012 07:58:39 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from red.freebsd.org (red.freebsd.org [IPv6:2001:4f8:fff6::22])
	by mx1.freebsd.org (Postfix) with ESMTP id B22D28FC0C
	for <freebsd-gnats-submit@FreeBSD.org>;
	Fri,  7 Sep 2012 07:58:39 +0000 (UTC)
Received: from red.freebsd.org (localhost [127.0.0.1])
	by red.freebsd.org (8.14.5/8.14.5) with ESMTP id q877wdRt022342
	for <freebsd-gnats-submit@FreeBSD.org>; Fri, 7 Sep 2012 07:58:39 GMT
	(envelope-from nobody@red.freebsd.org)
Received: (from nobody@localhost)
	by red.freebsd.org (8.14.5/8.14.5/Submit) id q877wdwo022341;
	Fri, 7 Sep 2012 07:58:39 GMT (envelope-from nobody)
Message-Id: <201209070758.q877wdwo022341@red.freebsd.org>
Date: Fri, 7 Sep 2012 07:58:39 GMT
From: Oliver Hartmann <ohartman@zedat.fu-berlin.de>
To: freebsd-gnats-submit@FreeBSD.org
X-Send-Pr-Version: www-3.1
Cc: 
Subject: bin/171402: fetch(1): Authentication error or Segmentation fault on
	HTTPS:// URLs
X-BeenThere: freebsd-bugs@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Bug reports <freebsd-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
	<mailto:freebsd-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-bugs>
List-Post: <mailto:freebsd-bugs@freebsd.org>
List-Help: <mailto:freebsd-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
	<mailto:freebsd-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 07 Sep 2012 08:00:09 -0000


>Number:         171402
>Category:       bin
>Synopsis:       fetch(1): Authentication error or Segmentation fault on HTTPS:// URLs
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Fri Sep 07 08:00:08 UTC 2012
>Closed-Date:
>Last-Modified:
>Originator:     Oliver Hartmann
>Release:        FreeBSD 10.0-CURRENT r240150M amd64
>Organization:
FU Berlin
>Environment:
FreeBSD 10.0-CURRENT #2 r240150M: Wed Sep  5 21:35:41 CEST 2012 amd64,  CLANG built
>Description:
While trying to fetch sources for a port located at a SSL secured URL, I run into a problem with fetch(1) droping a Segmentaion fault" or reporting "Authentication error", while wget(1) from port net/wget  doesn't segfaults: 


fetch:
fetch -o /dev/null https://launchpad.net/
fetch: https://launchpad.net/: Authentication error

wget:
wget https://launchpad.net/
--2012-09-07 09:45:59--  https://launchpad.net/
Resolving launchpad.net (launchpad.net)... 91.189.89.223, 91.189.89.222
Connecting to launchpad.net (launchpad.net)|91.189.89.223|:443... connected.
ERROR: cannot verify launchpad.net's certificate, issued by `/C=US/ST=Arizona/L=Scottsdale/O=GoDaddy.com, Inc./OU=http://certificates.godaddy.com/repository/CN=Go Daddy Secure Certification Authority/serialNumber=07969287':
  Self-signed certificate encountered.
To connect to launchpad.net insecurely, use `--no-check-certificate'.



fetch -o /dev/null https://lists.sourceforge.net/
Segmentation fault

wget:
wget https://lists.sourceforge.net
--2012-09-07 09:47:02--  https://lists.sourceforge.net/
Resolving lists.sourceforge.net (lists.sourceforge.net)... 216.34.181.88
Connecting to lists.sourceforge.net (lists.sourceforge.net)|216.34.181.88|:443... connected.
ERROR: cannot verify lists.sourceforge.net's certificate, issued by `/C=US/O=GeoTrust, Inc./CN=GeoTrust SSL CA':
  Unable to locally verify the issuer's authority.
To connect to lists.sourceforge.net insecurely, use `--no-check-certificate'.

The "Authentication error" can be avoided by applying option `--no-check-certificate' as suggested for fetching sources located at https://launchpad.net/ with wget(1). But fetch(1) doesn't seem to have the ability to switch off the authentication the same way.

The Segmentation fault seems to be weird.

I'm using the system's OpenSSL 1.0.0c, no additional port installed.
>How-To-Repeat:
Try mentioned failing fetch(1) sequences and check with wget(1).
>Fix:


>Release-Note:
>Audit-Trail:
>Unformatted: