.
D 2021-10-10T16:46:37.012
J foundin 1.7.22
J icomment Server\scode:\r\nproc\saccept\s{so\sargs}\s{\r\n\s\s\sputs\s$so\s$args;\sflush\s$so;\sclose\s$so\r\n}\r\nsocket\s-server\saccept\s10001;#\sPlain\sold\sTcl\ssocket\r\ntls::socket\s-server\saccept\s10002;#\sTLS\ssocket\r\n\r\nOn\sclient\sside:\sPlain\sold\ssockets\swork\r\n%\sset\sso\s[socket\slocalhost\s10001];\sgets\s$so\r\n::1\s58824\r\n\r\nTLS\ssockets\sget\san\serror:\r\n%\sset\sso\s[tls::socket\slocalhost\s10002];\sgets\s$so\r\nerror\sreading\s"sock0000019561DCF4C0":\ssoftware\scaused\sconnection\sabort\r\n\r\nerrorInfo\sshows:\r\nSSL\schannel\s"sock0000019561DCF4C0":\serror:\ssslv3\salert\shandshake\sfailure\r\n\r\nNote\sthat\sif\sthe\sclient\sinitiates\sdata\sflow,\severything\sworks\sfine.\sHowever,\sI\sdo\snot\sbelieve\sthis\sis\sa\srequirement\sfor\sTLS.\sClient\sside\shas\sto\sinitiate\snegotiation\sbut\sthe\sdata\sflow\smay\sbegin\sfrom\seither\send.\r\n\r\nMy\sfeeling\sis\sthat\sthe\sserver\sside\saccept\sprocedure\sshould\snot\sbe\scalled\suntil\sTLS\snegotiation\sis\sdone\sAND\sclient\sshould\sinitiate\shandshake\swithout\swaiting\sfor\sapplication\sto\spush\suser\sdata.\r\n\r\n/Ashok
J login anonymous
J mimetype text/x-markdown
J severity Important
J status Open
J title Server\saccept\sinvoked\sbefore\shandshake\scompleted
J type Code\sDefect
K ad8604520ea45d39112209469c9d6cfa3456fdee
U anonymous
Z d1e6147bd2938d0705806fd49072748a