HTTP client: Work around HTTPS proxy use bug due to callback design flaw

See discussion in #17088, where the real solution was postponed to 4.0. This preliminarily fixes the issue that the HTTP(S) proxy environment vars were neglected when determining whether a proxy should be used for HTTPS. Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/17310)
author: Dr. David von Oheimb <David.von.Oheimb@siemens.com> 2021-11-26 16:46:13 +0100
committer: Dr. David von Oheimb <dev@ddvo.net> 2022-01-04 15:05:32 +0100
commit: 068549f8db6d792a88bb888118001c4582f79074 (patch)
tree: c441bdda706cf5949cf9f59a73885b125d355dc7 /crypto/http
parent: a8251a32a0dc449fc39f44a1768e091fcc077227 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/crypto/http/http_client.c b/crypto/http/http_client.c
index f786f831bf..14c2cbf2b5 100644
--- a/crypto/http/http_client.c
+++ b/crypto/http/http_client.c
@@ -946,6 +946,7 @@ OSSL_HTTP_REQ_CTX *OSSL_HTTP_open(const char *server, const char *port,
     }
     /* now overall_timeout is guaranteed to be >= 0 */
 
+    /* adapt in order to fix callback design flaw, see #17088 */
     /* callback can be used to wrap or prepend TLS session */
     if (bio_update_fn != NULL) {
         BIO *orig_bio = cbio;
author	Dr. David von Oheimb <David.von.Oheimb@siemens.com>	2021-11-26 16:46:13 +0100
committer	Dr. David von Oheimb <dev@ddvo.net>	2022-01-04 15:05:32 +0100
commit	068549f8db6d792a88bb888118001c4582f79074 (patch)
tree	c441bdda706cf5949cf9f59a73885b125d355dc7 /crypto/http
parent	a8251a32a0dc449fc39f44a1768e091fcc077227 (diff)