[Bug 235020] www/apache24: patch to prevent lockup with TLS 1.3 (PATCH)

classic Classic list List threaded Threaded
4 messages Options
Reply | Threaded
Open this post in threaded view
|

[Bug 235020] www/apache24: patch to prevent lockup with TLS 1.3 (PATCH)

bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=235020

            Bug ID: 235020
           Summary: www/apache24: patch to prevent lockup with TLS 1.3
                    (PATCH)
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Some People
          Priority: ---
         Component: Individual Port(s)
          Assignee: [hidden email]
          Reporter: [hidden email]
             Flags: maintainer-feedback?([hidden email])
          Assignee: [hidden email]

Created attachment 201206
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=201206&action=edit
patch to ssl module.

There is an upstream patch for the SSL module in Apache 2.4 to prevent lockups
when using TLS v1.3 and OpenSSL 1.1.1a.  It will be incorporated in the next
2.4 release but it would be nice to include the patch in the meantime.

cf. https://bz.apache.org/bugzilla/show_bug.cgi?id=63052

(I have confirmation the patch works)

--
You are receiving this mail because:
You are the assignee for the bug.
_______________________________________________
[hidden email] mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-apache
To unsubscribe, send any mail to "[hidden email]"
Reply | Threaded
Open this post in threaded view
|

maintainer-feedback requested: [Bug 235020] www/apache24: patch to prevent lockup with TLS 1.3 (PATCH)

bugzilla-noreply
Bugzilla Automation <[hidden email]> has asked freebsd-apache mailing
list <[hidden email]> for maintainer-feedback:
Bug 235020: www/apache24: patch to prevent lockup with TLS 1.3 (PATCH)
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=235020



--- Description ---
There is an upstream patch for the SSL module in Apache 2.4 to prevent lockups
when using TLS v1.3 and OpenSSL 1.1.1a.  It will be incorporated in the next
2.4 release but it would be nice to include the patch in the meantime.

cf. https://bz.apache.org/bugzilla/show_bug.cgi?id=63052

(I have confirmation the patch works)
_______________________________________________
[hidden email] mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-apache
To unsubscribe, send any mail to "[hidden email]"
Reply | Threaded
Open this post in threaded view
|

[Bug 235020] www/apache24: patch to prevent lockup with TLS 1.3 (PATCH)

bugzilla-noreply
In reply to this post by bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=235020

Jochen Neumeister <[hidden email]> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |[hidden email]
             Status|New                         |In Progress

--
You are receiving this mail because:
You are the assignee for the bug.
_______________________________________________
[hidden email] mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-apache
To unsubscribe, send any mail to "[hidden email]"
Reply | Threaded
Open this post in threaded view
|

[Bug 235020] www/apache24: patch to prevent lockup with TLS 1.3 (PATCH)

bugzilla-noreply
In reply to this post by bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=235020

Jochen Neumeister <[hidden email]> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Resolution|---                         |FIXED
             Status|In Progress                 |Closed

--- Comment #1 from Jochen Neumeister <[hidden email]> ---
Hi :-)

this was fix in r491041

Changelog:
[..]
    *) mod_ssl: Clear retry flag before aborting client-initiated
renegotiation.
       PR 63052 [Joe Orton]

--
You are receiving this mail because:
You are the assignee for the bug.
_______________________________________________
[hidden email] mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-apache
To unsubscribe, send any mail to "[hidden email]"