Bug#990498: CCurlFile::FillBuffer - Failed: Error in the HTTP2 framing layer(16)
Package: kodi
Followup-For: Bug #990498
X-Debbugs-Cc: ghedo@debian.org, elbrus@debian.org
Hi Mathieu!
Can you please check if the following patch for curl 7.64.0-4+deb10u2 resolves your issue?
It is a backport of two patches merged in 7.65.0 and 7.67.0, respectively (see the commit msg
for details).
If that helps, I will reattach the bug to curl package since the patch is long-time merged
upstream.
Vasyl
-- System Information:
Debian Release: 11.0
APT prefers unstable-debug
APT policy: (500, 'unstable-debug'), (500, 'buildd-unstable'), (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 5.10.0-7-amd64 (SMP w/6 CPU threads)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=C, LC_CTYPE=C (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: unable to detect
Versions of packages kodi depends on:
pn kodi-bin <none>
pn kodi-data <none>
Versions of packages kodi recommends:
pn kodi-repository-kodi | kodi-repository <none>
pn kodi-visualization-spectrum <none>
kodi suggests no packages.
diff --git a/debian/patches/28-Fix-HTTP2-framing-layer-#990498.patch b/debian/patches/28-Fix-HTTP2-framing-layer-#990498.patch
new file mode 100644
index 0000000..b6a917e
--- /dev/null
+++ b/debian/patches/28-Fix-HTTP2-framing-layer-#990498.patch
@@ -0,0 +1,34 @@
+Subject: Fix HTTP2 framing layer error (Closes: #990498)
+Author: Vasyl Gello <vasek.gello@gmail.com>
+Forwarded: not-needed
+
+This is squashed no-change backport of two commits:
+
+https://github.com/curl/curl/commit/3f5da4e59a556fc68272a9857a38dd75234d0c04
+openssl: mark connection for close on TLS close_notify
+
+https://github.com/curl/curl/commit/a56a47ac33a8344c0a3f3f74bd4a6b07576f7e0a
+openssl: close_notify on the FTP data connection doesn't mean closure
+
+mentioned in upstream issue:
+
+https://github.com/curl/curl/issues/3750
+
+---
+
+--- a/lib/vtls/openssl.c
++++ b/lib/vtls/openssl.c
+@@ -3792,7 +3792,13 @@
+
+ switch(err) {
+ case SSL_ERROR_NONE: /* this is not an error */
++ break;
+ case SSL_ERROR_ZERO_RETURN: /* no more data */
++ /* close_notify alert */
++ if(num == FIRSTSOCKET)
++ /* mark the connection for close if it is indeed the control
++ connection */
++ connclose(conn, "TLS close_notify");
+ break;
+ case SSL_ERROR_WANT_READ:
+ case SSL_ERROR_WANT_WRITE:
diff --git a/debian/patches/series b/debian/patches/series
index 6330cd9..d0d1790 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -19,6 +19,7 @@
25_CVE-2020-8286.patch
26_CVE-2021-22876.patch
27_CVE-2021-22890.patch
+28-Fix-HTTP2-framing-layer-#990498.patch
# do not add patches below
90_gnutls.patch
Reply to: