Bug#990498: CCurlFile::FillBuffer - Failed: Error in the HTTP2 framing layer(16)

To: Debian Bug Tracking System <990498@bugs.debian.org>
Subject: Bug#990498: CCurlFile::FillBuffer - Failed: Error in the HTTP2 framing layer(16)
From: Vasyl Gello <vasek.gello@gmail.com>
Date: Wed, 30 Jun 2021 20:20:10 +0000
Message-id: <[🔎] 162508440991.5476.12611702136134984321.reportbug@debian-development>
Reply-to: Vasyl Gello <vasek.gello@gmail.com>, 990498@bugs.debian.org
References: <[🔎] CA+7wUswSJFQTwSpXtQFR71K2NwS9NJtB4wVmNowyHgVvuNHpmg@mail.gmail.com>

Package: kodi
Followup-For: Bug #990498
X-Debbugs-Cc: ghedo@debian.org, elbrus@debian.org

Hi Mathieu!

Can you please check if the following patch for curl 7.64.0-4+deb10u2 resolves your issue?
It is a backport of two patches merged in 7.65.0 and 7.67.0, respectively (see the commit msg
for details).

If that helps, I will reattach the bug to curl package since the patch is long-time merged
upstream.

Vasyl

-- System Information:
Debian Release: 11.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'buildd-unstable'), (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 5.10.0-7-amd64 (SMP w/6 CPU threads)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=C, LC_CTYPE=C (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: unable to detect

Versions of packages kodi depends on:
pn  kodi-bin   <none>
pn  kodi-data  <none>

Versions of packages kodi recommends:
pn  kodi-repository-kodi | kodi-repository  <none>
pn  kodi-visualization-spectrum             <none>

kodi suggests no packages.

diff --git a/debian/patches/28-Fix-HTTP2-framing-layer-#990498.patch b/debian/patches/28-Fix-HTTP2-framing-layer-#990498.patch
new file mode 100644
index 0000000..b6a917e
--- /dev/null
+++ b/debian/patches/28-Fix-HTTP2-framing-layer-#990498.patch
@@ -0,0 +1,34 @@
+Subject: Fix HTTP2 framing layer error (Closes: #990498)
+Author: Vasyl Gello <vasek.gello@gmail.com>
+Forwarded: not-needed
+
+This is squashed no-change backport of two commits:
+
+https://github.com/curl/curl/commit/3f5da4e59a556fc68272a9857a38dd75234d0c04
+openssl: mark connection for close on TLS close_notify
+
+https://github.com/curl/curl/commit/a56a47ac33a8344c0a3f3f74bd4a6b07576f7e0a
+openssl: close_notify on the FTP data connection doesn't mean closure
+
+mentioned in upstream issue:
+
+https://github.com/curl/curl/issues/3750
+
+---
+
+--- a/lib/vtls/openssl.c
++++ b/lib/vtls/openssl.c
+@@ -3792,7 +3792,13 @@
+ 
+     switch(err) {
+     case SSL_ERROR_NONE: /* this is not an error */
++      break;
+     case SSL_ERROR_ZERO_RETURN: /* no more data */
++      /* close_notify alert */
++      if(num == FIRSTSOCKET)
++        /* mark the connection for close if it is indeed the control
++           connection */
++        connclose(conn, "TLS close_notify");
+       break;
+     case SSL_ERROR_WANT_READ:
+     case SSL_ERROR_WANT_WRITE:
diff --git a/debian/patches/series b/debian/patches/series
index 6330cd9..d0d1790 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -19,6 +19,7 @@
 25_CVE-2020-8286.patch
 26_CVE-2021-22876.patch
 27_CVE-2021-22890.patch
+28-Fix-HTTP2-framing-layer-#990498.patch
 
 # do not add patches below
 90_gnutls.patch

Reply to:

References:
- Bug#990498: CCurlFile::FillBuffer - Failed: Error in the HTTP2 framing layer(16)
  - From: Mathieu Malaterre <malat@debian.org>

Prev by Date: Bug#990498: CCurlFile::FillBuffer - Failed: Error in the HTTP2 framing layer(16)
Next by Date: Bug#990498: CCurlFile::FillBuffer - Failed: Error in the HTTP2 framing layer(16)
Previous by thread: Bug#990498: CCurlFile::FillBuffer - Failed: Error in the HTTP2 framing layer(16)
Next by thread: Bug#990498: CCurlFile::FillBuffer - Failed: Error in the HTTP2 framing layer(16)
Index(es):
- Date
- Thread