[Bug 2055304] Re: openssl 3.0.2 backport IgnoreUnexpectedEOF ssl config option from 3.2
Adrien Nader
2055304 at bugs.launchpad.net
Mon Jan 13 16:31:17 UTC 2025
I'm going to switch this to Won't fix since only on person seems to be
affected and they had a solution for them. I never found out who is the
other user affected on 2024-05-17. We can re-consider if I get
information from that user (it's really unfortunate that LP didn't
provide more insights)
** Changed in: openssl (Ubuntu)
Status: Confirmed => Won't Fix
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/2055304
Title:
openssl 3.0.2 backport IgnoreUnexpectedEOF ssl config option from 3.2
Status in openssl package in Ubuntu:
Won't Fix
Bug description:
I get "Closing connection 0 curl: (35) error:0A000126:SSL
routines::unexpected eof while reading" accessing some web servers.
AFAIS "SSL_OP_IGNORE_UNEXPECTED_EOF" can help here. With 3.2[0] it can
be configured in openssl.cnf, whereas 3.0[1] cannot. Would you mind to
backport the mini patch[2] to be configured with 3.0, too?
Example:
$ tail -n 3 /etc/ssl/openssl.cnf
[system_default_sect]
CipherString = DEFAULT:@SECLEVEL=2
Options = IgnoreUnexpectedEOF
[0] https://www.openssl.org/docs/man3.2/man3/SSL_CONF_cmd.html
[1] https://www.openssl.org/docs/man3.0/man3/SSL_CONF_cmd.html
[2] https://github.com/openssl/openssl/commit/51cf034433d528876f3c235c5150c5acfe88f24d
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/2055304/+subscriptions
More information about the foundations-bugs
mailing list