cURL / Mailing Lists / curl-library / Single Mail


Re: [PATCH] sockfilt: read full blocks also in juggle()

From: Yang Tse <>
Date: Wed, 28 Dec 2011 23:26:04 +0100

2011/12/27 Kamil Dudka wrote:

> nss-3.13 came with a security fix that broke curl's test-suite.  It
> splits a block of size N to a one-byte and N-1 bytes blocks, which
> the testing server was not ready for, and it caused the FTPS tests to
> be skipped.  With this patch applied, the FTPS tests now work again.
> An alternative workaround for this issue is to export the variable
> NSS_SSL_CBC_RANDOM_IV=0 on client's side.
> Bug: was certainly not ready for the arbitrary splitting of
application data among different TCP packets. I've just pushed some
changes to that should make pingpong server it work with
any sort of application data fragmentation it receives over TCP.

Please verify if this commit alone improves/fixes

If e99128a5c9 does not improve the situation, logs from a manually run
of " -k 100" and interrupting it should better pinpoint
where the problem comes from. I believe that making sockfilt.c break
on new-line boundaries should not be required unless we have another
problem somewhere else.

List admin:
Received on 2011-12-28