diff options
| author | Dmitry Belyavskiy <beldmit@gmail.com> | 2020-05-05 16:20:42 +0300 |
|---|---|---|
| committer | Dmitry Belyavskiy <beldmit@gmail.com> | 2020-05-19 19:04:11 +0300 |
| commit | 09b90e0ed7915809fcd4ee1e250d881b77d06d45 (patch) | |
| tree | 897a351d8f49b6f575bf54bba4dd486b00ad31f7 /include | |
| parent | fb420afc878fa38a5d8cf22e25cf7d438d39987a (diff) | |
Introducing option SSL_OP_IGNORE_UNEXPECTED_EOF
Partially fixes #11209.
Before OpenSSL 3.0 in case when peer does not send close_notify,
the behaviour was to set SSL_ERROR_SYSCALL error with errno 0.
This behaviour has changed. The SSL_OP_IGNORE_UNEXPECTED_EOF restores
the old behaviour for compatibility's sake.
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Kurt Roeckx <kurt@roeckx.be>
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/11735)
Diffstat (limited to 'include')
| -rw-r--r-- | include/openssl/ssl.h | 7 |
1 files changed, 1 insertions, 6 deletions
diff --git a/include/openssl/ssl.h b/include/openssl/ssl.h index 05755b014d..d1e9f7957d 100644 --- a/include/openssl/ssl.h +++ b/include/openssl/ssl.h @@ -325,14 +325,9 @@ typedef int (*SSL_async_callback_fn)(SSL *s, void *arg); /* Allow initial connection to servers that don't support RI */ # define SSL_OP_LEGACY_SERVER_CONNECT 0x00000004U -/* Reserved value (until OpenSSL 3.0.0) 0x00000008U */ # define SSL_OP_TLSEXT_PADDING 0x00000010U -/* Reserved value (until OpenSSL 3.0.0) 0x00000020U */ # define SSL_OP_SAFARI_ECDHE_ECDSA_BUG 0x00000040U -/* - * Reserved value (until OpenSSL 3.0.0) 0x00000080U - * Reserved value (until OpenSSL 3.0.0) 0x00000100U - */ +# define SSL_OP_IGNORE_UNEXPECTED_EOF 0x00000080U # define SSL_OP_DISABLE_TLSEXT_CA_NAMES 0x00000200U |