mirror of
https://github.com/openwrt/openwrt.git
synced 2025-01-24 13:28:33 +00:00
2e8a4db9b6
This adds patches to avoid possible application breakage caused by a change in behavior introduced in 1.1.1e. It affects at least nginx, which logs error messages such as: nginx[16652]: [crit] 16675#0: *358 SSL_read() failed (SSL: error: 4095126:SSL routines:ssl3_read_n:unexpected eof while reading) while keepalive, client: xxxx, server: [::]:443 Openssl commits db943f4 (Detect EOF while reading in libssl), and 22623e0 (Teach more BIOs how to handle BIO_CTRL_EOF) changed the behavior when encountering an EOF in SSL_read(). Previous behavior was to return SSL_ERROR_SYSCALL, but errno would still be 0. The commits being reverted changed it to SSL_ERRO_SSL, and add an error to the stack, which is correct. Unfortunately this affects a number of applications that counted on the old behavior, including nginx. The reversion was discussed in openssl/openssl#11378, and implemented as PR openssl/openssl#11400. Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com> |
||
|---|---|---|
| .. | ||
| 100-Configure-afalg-support.patch | ||
| 110-openwrt_targets.patch | ||
| 120-strip-cflags-from-binary.patch | ||
| 130-dont-build-tests-fuzz.patch | ||
| 140-allow-prefer-chacha20.patch | ||
| 150-openssl.cnf-add-engines-conf.patch | ||
| 200-Partially-revert-Detect-EOF-while-reading-in-libssl.patch | ||
| 400-eng_devcrypto-save-ioctl-if-EVP_MD_.FLAG_ONESHOT.patch | ||
| 410-eng_devcrypto-add-configuration-options.patch | ||
| 420-eng_devcrypto-add-command-to-dump-driver-info.patch | ||
| 430-e_devcrypto-make-the-dev-crypto-engine-dynamic.patch | ||
| 500-e_devcrypto-default-to-not-use-digests-in-engine.patch | ||
| 510-e_devcrypto-ignore-error-when-closing-session.patch | ||