Package: kodi Followup-For: Bug #990498 X-Debbugs-Cc: gh...@debian.org, elb...@debian.org
Hi Mathieu! Can you please check if the following patch for curl 7.64.0-4+deb10u2 resolves your issue? It is a backport of two patches merged in 7.65.0 and 7.67.0, respectively (see the commit msg for details). If that helps, I will reattach the bug to curl package since the patch is long-time merged upstream. Vasyl -- System Information: Debian Release: 11.0 APT prefers unstable-debug APT policy: (500, 'unstable-debug'), (500, 'buildd-unstable'), (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 5.10.0-7-amd64 (SMP w/6 CPU threads) Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=C, LC_CTYPE=C (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8), LANGUAGE not set Shell: /bin/sh linked to /bin/dash Init: unable to detect Versions of packages kodi depends on: pn kodi-bin <none> pn kodi-data <none> Versions of packages kodi recommends: pn kodi-repository-kodi | kodi-repository <none> pn kodi-visualization-spectrum <none> kodi suggests no packages.
diff --git a/debian/patches/28-Fix-HTTP2-framing-layer-#990498.patch b/debian/patches/28-Fix-HTTP2-framing-layer-#990498.patch new file mode 100644 index 0000000..b6a917e --- /dev/null +++ b/debian/patches/28-Fix-HTTP2-framing-layer-#990498.patch @@ -0,0 +1,34 @@ +Subject: Fix HTTP2 framing layer error (Closes: #990498) +Author: Vasyl Gello <vasek.ge...@gmail.com> +Forwarded: not-needed + +This is squashed no-change backport of two commits: + +https://github.com/curl/curl/commit/3f5da4e59a556fc68272a9857a38dd75234d0c04 +openssl: mark connection for close on TLS close_notify + +https://github.com/curl/curl/commit/a56a47ac33a8344c0a3f3f74bd4a6b07576f7e0a +openssl: close_notify on the FTP data connection doesn't mean closure + +mentioned in upstream issue: + +https://github.com/curl/curl/issues/3750 + +--- + +--- a/lib/vtls/openssl.c ++++ b/lib/vtls/openssl.c +@@ -3792,7 +3792,13 @@ + + switch(err) { + case SSL_ERROR_NONE: /* this is not an error */ ++ break; + case SSL_ERROR_ZERO_RETURN: /* no more data */ ++ /* close_notify alert */ ++ if(num == FIRSTSOCKET) ++ /* mark the connection for close if it is indeed the control ++ connection */ ++ connclose(conn, "TLS close_notify"); + break; + case SSL_ERROR_WANT_READ: + case SSL_ERROR_WANT_WRITE: diff --git a/debian/patches/series b/debian/patches/series index 6330cd9..d0d1790 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -19,6 +19,7 @@ 25_CVE-2020-8286.patch 26_CVE-2021-22876.patch 27_CVE-2021-22890.patch +28-Fix-HTTP2-framing-layer-#990498.patch # do not add patches below 90_gnutls.patch
