An affected user performed the verification, due to c7g instance types being in "Preview" state on Amazon AWS, and not generally accessible.
The user started a c7g instance, and checked they had openssl 1.1.1f-1ubuntu2.10 from -updates.
They attempted to use the poly1035 MAC downloading the file from the testcase:
$ curl https://services.gradle.org/distributions/gradle-7.2-bin.zip --output gradle-7.2.bin
% Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0Segmentation fault (core dumped)
They can reproduce the issue.
They then enabled -proposed from ports.ubuntu.com mirror, and installed openssl 1.1.1f-1ubuntu2.11.
Performing verification for openssl on Focal.
An affected user performed the verification, due to c7g instance types being in "Preview" state on Amazon AWS, and not generally accessible.
The user started a c7g instance, and checked they had openssl 1.1.1f-1ubuntu2.10 from -updates.
They attempted to use the poly1035 MAC downloading the file from the testcase:
$ curl https:/ /services. gradle. org/distributio ns/gradle- 7.2-bin. zip --output gradle-7.2.bin
Dload Upload Total Spent Left Speed
% Total % Received % Xferd Average Speed Time Time Time Current
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0Segmentation fault (core dumped)
They can reproduce the issue.
They then enabled -proposed from ports.ubuntu.com mirror, and installed openssl 1.1.1f-1ubuntu2.11.
They again tried downloading the file:
$ curl https:/ /services. gradle. org/distributio ns/gradle- 7.2-bin. zip --output gradle-7.2.bin
Dload Upload Total Spent Left Speed
% Total % Received % Xferd Average Speed Time Time Time Current
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0
(note the file doesn't actually download due to curl not automatically following 301 redirects):
$ curl https:/ /services. gradle. org/distributio ns/gradle- 7.2-bin. zip --output gradle-7.2.bin --verbose CHACHA20- POLY1305 /downloads. gradle- dn.com/ distributions/ gradle- 7.2-bin. zip
...
* SSL connection using TLSv1.2 / ECDHE-ECDSA-
...
< HTTP/1.1 301 Moved Permanently
< Location: https:/
...
curl does not segfault, and exits successfully. The package in -proposed fixes the issue. Happy to mark as verified.