Red Hat Bugzilla – Bug 978872
stdsoap2.h: struct soap should match exactly with what libgsoap uses
Last modified: 2013-11-10 01:16:09 EST
Description of problem:
gsoap installs stdsoap2.h (it is in package gsoap-devel), with no changes
from the sources. This file contains many #ifdef ... #endif constructs
to select features.
This file is used at build time of libgsoap.so; one of the datastructures
in this library is called struct SOAP_STD_API soap. Depending on the use of
the WITH_IPV6 flag, the size of one of its fields differs:
struct sockaddr_storage peer; /* IPv6: set by soap_accept and by UDP recv */
struct sockaddr_in peer; /* IPv4: set by soap_connect/soap_accept and by UDP recv */
Applications that build and link to libgsoap *must* match this choice exactly,
at the risk of misaligning the fields of struct soap which could result in
crashes. This also leads to potential security vulnerabilities. It is particulary
unsafe to forget -DWITH_IPV6 when building against libgsoap.so.
The choices for libgsoap are recorded in the pkgconfig files
(gsoap.pc), but rather than relying on pkgconfig, it would seem safer
to install a version of stdsoap2.h that fixes all such choices
according to what was chosen for libgsoap.so.
Steps to Reproduce:
1. build any application linking against libgsoap.so, without using -DWITH_IPV6
2. run and crash
I think that this could be addressed upstream.
This bug appears to have been reported against 'rawhide' during the Fedora 20 development cycle.
Changing version to '20'.
More information and reason for this action is here:
gsoap-2.7.16-4.el6 has been submitted as an update for Fedora EPEL 6.
gsoap-2.8.12-4.fc20 has been submitted as an update for Fedora 20.
gsoap-2.8.12-4.fc19 has been submitted as an update for Fedora 19.
gsoap-2.7.13-5.el5 has been submitted as an update for Fedora EPEL 5.
* should fix your issue,
* was pushed to the Fedora EPEL 5 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=epel-testing gsoap-2.7.13-5.el5'
as soon as you are able to.
Please go to the following url:
then log in and leave karma (feedback).
gsoap-2.8.12-4.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report.
gsoap-2.7.13-5.el5 has been pushed to the Fedora EPEL 5 stable repository. If problems still persist, please make note of it in this bug report.
gsoap-2.7.16-4.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report.
gsoap-2.8.12-4.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report.