Propagate gnutlsPriorityString when accepting new connection

resolves: RHEL-54663
This commit is contained in:
alakatos 2024-08-27 16:18:00 +02:00 committed by Cropi
parent 2c51b22dd8
commit e6cf5e3e12
2 changed files with 46 additions and 29 deletions

View File

@ -0,0 +1,11 @@
diff -up rsyslog-8.2102.0/runtime/nsd_ossl.c.orig rsyslog-8.2102.0/runtime/nsd_ossl.c
--- rsyslog-8.2102.0/runtime/nsd_ossl.c.orig 2024-08-26 15:27:50.528691153 +0200
+++ rsyslog-8.2102.0/runtime/nsd_ossl.c 2024-08-26 15:28:06.950855632 +0200
@@ -1544,6 +1544,7 @@ AcceptConnReq(nsd_t *pNsd, nsd_t **ppNew
pNew->permitExpiredCerts = pThis->permitExpiredCerts;
pNew->pPermPeers = pThis->pPermPeers;
pNew->DrvrVerifyDepth = pThis->DrvrVerifyDepth;
+ pNew->gnutlsPriorityString = pThis->gnutlsPriorityString;
CHKiRet(osslInitSession(pNew, osslServer));
/* Store nsd_ossl_t* reference in SSL obj */

View File

@ -6,7 +6,7 @@
Summary: Enhanced system logging and kernel message trapping daemon Summary: Enhanced system logging and kernel message trapping daemon
Name: rsyslog Name: rsyslog
Version: 8.2102.0 Version: 8.2102.0
Release: 15%{?dist} Release: 15%{?dist}.1
License: (GPLv3+ and ASL 2.0) License: (GPLv3+ and ASL 2.0)
Group: System Environment/Daemons Group: System Environment/Daemons
ExcludeArch: i686 ExcludeArch: i686
@ -76,6 +76,7 @@ Patch24: rsyslog-8.2102.0-rhbz2192955-es-4.patch
Patch25: rsyslog-8.2102.0-rhbz2192955-es-5.patch Patch25: rsyslog-8.2102.0-rhbz2192955-es-5.patch
Patch26: rsyslog-8.2102.0-rhbz2192955-es-6.patch Patch26: rsyslog-8.2102.0-rhbz2192955-es-6.patch
Patch27: rsyslog-8.2102.0-rhbz2192955-es-doc.patch Patch27: rsyslog-8.2102.0-rhbz2192955-es-doc.patch
Patch28: propagate-gnutlsPriorityString.patch
%package crypto %package crypto
Summary: Encryption support Summary: Encryption support
@ -299,34 +300,35 @@ mv build doc
%setup -q -D %setup -q -D
%setup -q -D -T -b 5 %setup -q -D -T -b 5
%patch0 -p1 -b .default-tag %patch -P 0 -p1
%patch1 -p1 -b .fd-leak-on-fsync %patch -P 1 -p1
%patch2 -p1 -b .timeout %patch -P 2 -p1
%patch3 -p1 -b .unexpected-priority-length %patch -P 3 -p1
%patch4 -p1 -b .imuxsock-rate-limit %patch -P 4 -p1
%patch5 -p1 -b .abort-on-id-resolution-fail %patch -P 5 -p1
%patch6 -p1 -b .prioritizeSAN %patch -P 6 -p1
%patch7 -p1 -b .errfile-maxsize %patch -P 7 -p1
%patch8 -p1 -b .state-file-leaking %patch -P 8 -p1
%patch9 -p1 -b .state-file-leaking-doc %patch -P 9 -p1
%patch10 -p1 -b .ossl-better-logs %patch -P 10 -p1
%patch11 -p1 -b .imtcp-refactor-params %patch -P 11 -p1
%patch12 -p1 -b .ossl-memory-leak %patch -P 12 -p1
%patch13 -p1 -b .ossl-ciphers-behaviour %patch -P 13 -p1
%patch14 -p1 -b .CVE-24903 %patch -P 14 -p1
%patch15 -p1 -b .gnutls-error-handling %patch -P 15 -p1
%patch16 -p1 -b .extra-ca-files %patch -P 16 -p1
%patch17 -p1 -b .extra-ca-files-doc %patch -P 17 -p1
%patch18 -p1 -b .imklog-heap %patch -P 18 -p1
%patch19 -p1 -b .cstrlen %patch -P 19 -p1
%patch20 -p1 -b .es0 %patch -P 20 -p1
%patch21 -p1 -b .es1 %patch -P 21 -p1
%patch22 -p1 -b .es2 %patch -P 22 -p1
%patch23 -p1 -b .es3 %patch -P 23 -p1
%patch24 -p1 -b .es4 %patch -P 24 -p1
%patch25 -p1 -b .es5 %patch -P 25 -p1
%patch26 -p1 -b .es6 %patch -P 26 -p1
%patch27 -p1 -b .es-doc %patch -P 27 -p1
%patch -P 28 -p1
%build %build
%ifarch sparc64 %ifarch sparc64
@ -571,6 +573,10 @@ done
%{_libdir}/rsyslog/omudpspoof.so %{_libdir}/rsyslog/omudpspoof.so
%changelog %changelog
* Mon Aug 26 2024 Attila Lakatos <alakatos@redhat.com> - 8.2102.0-15.1
- Propagate gnutlsPriorityString when accepting new connection
resolves: RHEL-54663
* Thu May 11 2023 Attila Lakatos <alakatos@redhat.com> - 8.2102.0-15 * Thu May 11 2023 Attila Lakatos <alakatos@redhat.com> - 8.2102.0-15
- omelasticsearch: make compatible with elasticsearch>=8 - omelasticsearch: make compatible with elasticsearch>=8
- add new action specific parameter esversion.major - add new action specific parameter esversion.major