CVSROOT: /cvs
Module name: src
Changes by: bl...@cvs.openbsd.org 2020/10/16 16:46:46
Modified files:
regress/usr.sbin/syslogd: Client.pm Server.pm
args-client-tls-fake.pl
args-server-tls-error.pl
args-tls-cafile-fake.pl
Log message:
With TLS 1.2 the step by step handshake created precise error
conditions. TLS 1.3 shortens the handshake, so some errors cannot
be reported properly to the other side. Instead the connection is
closed and the other side receives a SIGPIPE when it tries to write
the next TLS protocol message. Ignore this SIGPIPE signal in TLS
client and server and adapt error messages when grepping the log
files.
discussed with tb@ and jsing@
