[openssl-users] Peer closing connection with a FIN without first sending a close_notify

Jakob Bohm jb-openssl at wisemo.com
Tue Apr 21 11:08:00 UTC 2015

On 20/04/2015 18:26, Viktor Dukhovni wrote:
> On Mon, Apr 20, 2015 at 03:03:37PM +0000, Jason Schultz wrote:
>> We have also read that this particular behavior is not unheard of in SSL
>> implementations, and treating the TCP FIN as a proper way to close the
>> connection as described above is OK.
> Only when the application-level protocol contains sufficient framing,
> to make additional framing in TLS redundant.  This is not the case
> in FTP in stream mode.  FTP in block mode can signal end of file via
> the block headers, and then TLS shutdown is not needed.  (I've never
> seen FTP used in block mode).
I may have, once, when transferring data from an IBM
mainframe (VM/CMS) to a PC.  No longer recall the
options I had to specify to the ftp client.


Jakob Bohm, CIO, Partner, WiseMo A/S.  http://www.wisemo.com
Transformervej 29, 2860 Søborg, Denmark.  Direct +45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded

More information about the openssl-users mailing list