From d6b2fd7d35eace84ec3682406ffa90bcd8e86c5e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Edvinas=20Stun=C5=BE=C4=97nas?= <edvinas@8devices.com>
Date: Fri, 21 May 2021 06:25:20 +0000
Subject: [PATCH] Handle SSL_send SYSCALL error without errno

Either intentionaly or due to bug in openssl in some marginal
cases SSL_send reports SYSCALL error whilst errno is set to 0.
This either could mean that SSL_send did not made any system
call or errno were prematurely reset with consequent syscalls.
And in consequence sendraw() is not propagate correct errno
ends up in infinite loop trying to send same data.

Such behaviour was usually observed after third consequential
failed SSL send attempt which application was not aware of.
First send failed with syscall errno 32 (Broken pipe) second
one with SSL error 0x1409e10f (bad length) and lastly next
send attemt results with SYSCALL error and errno 0.

Tested using:
* OpenSSL v1.1.1
* musl v1.1.20 (c50985d5c8e316c5c464f352e79eeebfed1121a9)
* Linux 4.4.60+yocto armv7l
---
 src/ssl.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/ssl.c b/src/ssl.c
index a0feebe..82ed595 100644
--- a/src/ssl.c
+++ b/src/ssl.c
@@ -182,6 +182,10 @@ static int ssl_send(void *ctx, const char *data, size_t count, size_t *sent,
         ssl->error = SSL_ERROR_SSL;
         return LSEC_IO_SSL;
       }
+      /* Return failure when SSL reports syscall error
+       * but errno is not set to break send operation. */
+      if (errno == 0)
+        return LSEC_IO_SSL;
       if (err == 0)
         return IO_CLOSED;
       return lsec_socket_error();