[Pkg-tcltk-devel] Bug#1055759: tcl-tls: EOF's are sometimes treated as errors

Jeremy Sowden jeremy at azazel.net
Fri Nov 10 19:52:19 GMT 2023


On 2023-11-10, at 18:39:10 +0000, Jeremy Sowden wrote:
> Package: tcl-tls
> Version: 1.7.22-3+b1
> Severity: normal
> Tags: patch upstream
> 
> OpenSSL 3.0 introduced a new option `SSL_OP_IGNORE_UNEXPECTED_EOF`.  If
> this is not set, it handles unexpected EOF's as fatal errors.  Since
> TclTLS does not currently set it, some EOF's are treated as errors.  I
> have reported this upstream here:
> 
>   https://core.tcl-lang.org/tcltls/tktview/c5811f0d433d34ca16ccecdec10fb61e2f3ba657
> 
> I've attached the patch I proposed in the upstream bug report.  I'll add
> some DEP-3 metadata and create an MR against the tcltls Salsa repo.

Having given this a bit more thought (and looked into why openssl added
this option), I think that the patch needs a bit more work.  The openssl
s_client command, for example, has a command-line option to control this
behaviour.

J.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-tcltk-devel/attachments/20231110/fb4406ac/attachment.sig>


More information about the Pkg-tcltk-devel mailing list