cURL
Haxx ad
libcurl
Mailing Lists

Shopping cart software, Online file storage, Online photo storage, Hosted shopping cart, Contact management software, Email marketing software, Project management software, Issue tracking software, Online notepad, Web publishing software

curl's project page on SourceForge.net

Sponsors:
Haxx

cURL > Mailing List > Monthly Index > Single Mail

curl-library Archives

[PATCH v4] nss: try to reconnect in case of broken TLS server

From: Kamil Dudka <kdudka_at_redhat.com>
Date: Sun, 8 Nov 2009 20:09:07 +0100

Hello again,

yet another version of the same patch for libcurl-NSS and broken TLS servers.
The only incremental change is to not enable SSL_V2_COMPATIBLE_HELLO on the
second attempt per Nelson's suggestion:

--- a/lib/nss.c
+++ b/lib/nss.c
@@ -1135,8 +1135,7 @@ CURLcode Curl_nss_connect(struct connectdata *conn, int
sockindex)
   if(SSL_OptionSet(model, SSL_ENABLE_TLS, tlsv1) != SECSuccess)
     goto error;

- if(SSL_OptionSet(model, SSL_V2_COMPATIBLE_HELLO, ssl2
- || data->state.ssl_connect_retry) != SECSuccess)
+ if(SSL_OptionSet(model, SSL_V2_COMPATIBLE_HELLO, ssl2) != SECSuccess)
     goto error;

   /* reset the flag to avoid an infinite loop */

FYI Kaspar has raised an issue at upstream bugzilla, where you can find some
additional info:

https://bugzilla.mozilla.org/show_bug.cgi?id=526806

Kamil

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html

Received on 2009-11-08

These mail archives are generated by hypermail.

donate! Page updated November 16, 2009.
web site info

File upload with ASP.NET