On 19.10.20 12:09, Jan Engelhardt wrote:
On Monday 2020-10-19 11:45, Sebastian Parschauer wrote:
I've reported issues in SSL handling before which cause tools to hang and cause port 443 RSTs in the tcpdump. Since 2017 I maintain a custom osc SSL patch/fix package.
And this patch does what?
osc: Closing the SSL connection properly. See https://bugzilla.suse.com/show_bug.cgi?id=1068470 attachment osc-ssl-fix-hang-at-server-hello.patch: + def close(self): + self.sock.close() + So basically just adding the missing close() method to call SSL_shutdown(). The method is called but not implemented. You see RSTs in the tcpdump without this patch. The libcurl fix removes two superfluous SSL_shutdown() calls as it tries to close the connection three times. Not sure if this is still an issue as I only use http repos and wget instead of curl as a workaround. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org