[Pkg-tcltk-devel] Bug#1055759: tcl-tls: EOF's are sometimes treated as errors
Jeremy Sowden
jeremy at azazel.net
Fri Nov 10 19:52:19 GMT 2023
On 2023-11-10, at 18:39:10 +0000, Jeremy Sowden wrote:
> Package: tcl-tls
> Version: 1.7.22-3+b1
> Severity: normal
> Tags: patch upstream
>
> OpenSSL 3.0 introduced a new option `SSL_OP_IGNORE_UNEXPECTED_EOF`. If
> this is not set, it handles unexpected EOF's as fatal errors. Since
> TclTLS does not currently set it, some EOF's are treated as errors. I
> have reported this upstream here:
>
> https://core.tcl-lang.org/tcltls/tktview/c5811f0d433d34ca16ccecdec10fb61e2f3ba657
>
> I've attached the patch I proposed in the upstream bug report. I'll add
> some DEP-3 metadata and create an MR against the tcltls Salsa repo.
Having given this a bit more thought (and looked into why openssl added
this option), I think that the patch needs a bit more work. The openssl
s_client command, for example, has a command-line option to control this
behaviour.
J.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-tcltk-devel/attachments/20231110/fb4406ac/attachment.sig>
More information about the Pkg-tcltk-devel
mailing list