Summary: | net-misc/openvpn-2.3.6 - TLS_ERROR: BIO read tls_read_plaintext error: error:1408F06B:SSL routines:SSL3_GET_RECORD:bad decompression | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Anton Bolshakov <anton.bugs> |
Component: | Current packages | Assignee: | Dirkjan Ochtman (RETIRED) <djc> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | alexanderyt |
Priority: | Normal | ||
Version: | 10.1 | ||
Hardware: | All | ||
OS: | Linux | ||
See Also: | https://community.openvpn.net/openvpn/ticket/502 | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Attachments: | Disable SSL compression patch |
Description
Anton Bolshakov
2015-01-22 07:37:50 UTC
Due to the sensitive nature of OpenVPN and the maintenance burden, I don't really want to take patches that have not been approved by upstream. Please try to convince the upstream maintainers, then I will be happy to update the ebuild. The upstream has agreed, so it's just a matter of time. However, the patch might be different so I fully understand your concerns. You consider adding "epatch_user" so affected users would be able to fix it themselves while the upstream bug report is pending. The upstream bug report has been resolved. Here is the link to the patch: https://community.openvpn.net/openvpn/changeset/5d5233778868ddd568140c394adfcfc8e3453245/ Feel free to accepted it. Yup, I've been monitoring the upstream bug report. I'll attempt to backport the patch some time this week, as I have time. Created attachment 396594 [details, diff]
Disable SSL compression patch
Basically, they have accepted my patch (without debug log line).
Should take 3min to "backport" it. It's just 3 lines of code ;-)
Thanks.
Committed in 2.3.6-r2, thanks! |