Fix handling of EAGAIN vs. EOF in BIO read functions for OpenSSL 4.0.0

XMLWordPrintableJSON

    • Type: Task
    • Resolution: Fixed
    • Priority: Unknown
    • 2.4.0, 2.3.1
    • Affects Version/s: None
    • Component/s: None
    • None
    • Not Needed
    • None
    • C Drivers
    • Not Needed
    • None
    • None
    • None
    • None
    • None
    • None

      Despite successfully building mongoc with OpenSSL 4.0.0 (following CDRIVER-6308), the authentication tests against Atlas fail with the following error:

      TLS handshake failed: error:0A000126:SSL routines::unexpected eof while reading calling hello on '(...).mongodb-dev.net:27017'

      Current investigation suggests:

      • Not an issue that is resolved by setting SSL_OP_IGNORE_UNEXPECTED_EOF (connection close without a close_notify alert).
      • Not an issue that is resolved by disabling SSL_OP_ECH_GREASE (GREASED Encrypted ClientHello, aka ECH).
      • Not an issue that is resolved by constraining the set of supported groups, signature algorithms, or ciphers for TLSv1.2 and below.

            Assignee:
            Ezra Chung
            Reporter:
            Ezra Chung
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: