From: Daniel Salzman <daniel.salzman@nic.cz>
Date: Fri, 19 Apr 2024 13:31:34 +0000 (+0200)
Subject: tls: set GNUTLS_NO_SIGNAL to disable emitting SIGPIPE by send()
X-Git-Tag: v3.4.0~110^2~5
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=e33ceec72e9d2f87cd62a6ea5fc762e4d49b2a0e;p=thirdparty%2Fknot-dns.git

tls: set GNUTLS_NO_SIGNAL to disable emitting SIGPIPE by send()
---

diff --git a/src/libknot/quic/tls_common.c b/src/libknot/quic/tls_common.c
index 210c59dddb..f85ce74d20 100644
--- a/src/libknot/quic/tls_common.c
+++ b/src/libknot/quic/tls_common.c
@@ -268,15 +268,15 @@ int knot_tls_session(struct gnutls_session_int **session,
 		return KNOT_EINVAL;
 	}
 
-	gnutls_init_flags_t early_flags = 0;
+	gnutls_init_flags_t flags = GNUTLS_NO_SIGNAL;
 	if (early_data) {
-		early_flags |= GNUTLS_ENABLE_EARLY_DATA;
+		flags |= GNUTLS_ENABLE_EARLY_DATA;
 #ifdef ENABLE_QUIC // Next flags aren't available in older GnuTLS versions.
-		early_flags |= GNUTLS_NO_AUTO_SEND_TICKET | GNUTLS_NO_END_OF_EARLY_DATA;
+		flags |= GNUTLS_NO_AUTO_SEND_TICKET | GNUTLS_NO_END_OF_EARLY_DATA;
 #endif
 	}
 
-	int ret = gnutls_init(session, (server ? GNUTLS_SERVER : GNUTLS_CLIENT) | early_flags);
+	int ret = gnutls_init(session, (server ? GNUTLS_SERVER : GNUTLS_CLIENT) | flags);
 	if (ret == GNUTLS_E_SUCCESS) {
 		gnutls_certificate_send_x509_rdn_sequence(*session, 1);
 		gnutls_certificate_server_set_request(*session, GNUTLS_CERT_REQUEST);