Explicitly shut the socket down in s_client

author Bernd Edlinger <bernd.edlinger@hotmail.de>

Sat, 13 Jan 2018 17:41:08 +0000 (18:41 +0100)

committer Bernd Edlinger <bernd.edlinger@hotmail.de>

Sun, 14 Jan 2018 19:46:16 +0000 (20:46 +0100)
author Bernd Edlinger <bernd.edlinger@hotmail.de>
Sat, 13 Jan 2018 17:41:08 +0000 (18:41 +0100)
committer Bernd Edlinger <bernd.edlinger@hotmail.de>
Sun, 14 Jan 2018 19:46:16 +0000 (20:46 +0100)
diff --git a/apps/s_client.c b/apps/s_client.c

index fab007a86aa833d560c01f7937308e27740f9d9e..d1605454b9ebf2fdc4173ea7d27d34b1612e98ee 100644 (file)
--- a/apps/s_client.c
+++ b/apps/s_client.c
@@ -2471,6 +2471,17 @@ int s_client_main(int argc, char **argv)
       */
      Sleep(50);
  #endif
+    /*
+     * If we ended with an alert being sent, but still with data in the
+     * network buffer to be read, then calling BIO_closesocket() will
+     * result in a TCP-RST being sent. On some platforms (notably
+     * Windows) then this will result in the peer immediately abandoning
+     * the connection including any buffered alert data before it has
+     * had a chance to be read. Shutting down the sending side first,
+     * and then closing the socket sends TCP-FIN first followed by
+     * TCP-RST. This seems to allow the peer to read the alert data.
+     */
+    shutdown(SSL_get_fd(con), 1); /* SHUT_WR */
      BIO_closesocket(SSL_get_fd(con));
   end:
      if (con != NULL) {
author	Bernd Edlinger <bernd.edlinger@hotmail.de>
	Sat, 13 Jan 2018 17:41:08 +0000 (18:41 +0100)
committer	Bernd Edlinger <bernd.edlinger@hotmail.de>
	Sun, 14 Jan 2018 19:46:16 +0000 (20:46 +0100)