Skip to content
Permalink
Browse files

openssl: mark connection for close on TLS close_notify

Without this, detecting and avoid reusing a closed TLS connection
(without a previous GOAWAY) when doing HTTP/2 is tricky.

Reported-by: Tom van der Woerdt
Fixes #3750
Closes #3763
  • Loading branch information...
bagder committed Apr 11, 2019
1 parent 687cdeb commit 3f5da4e59a556fc68272a9857a38dd75234d0c04
Showing with 3 additions and 0 deletions.
  1. +3 −0 lib/vtls/openssl.c
@@ -3756,7 +3756,10 @@ static ssize_t ossl_recv(struct connectdata *conn, /* connection data */

switch(err) {
case SSL_ERROR_NONE: /* this is not an error */
break;
case SSL_ERROR_ZERO_RETURN: /* no more data */
/* close_notify alert */
connclose(conn, "TLS close_notify");
break;
case SSL_ERROR_WANT_READ:
case SSL_ERROR_WANT_WRITE:

0 comments on commit 3f5da4e

Please sign in to comment.
You can’t perform that action at this time.