https://bz.apache.org/bugzilla/show_bug.cgi?id=69182
--- Comment #5 from Remy Maucherat <r...@apache.org> --- This is a non issue for OpenSSL as closeInbound and closeOutbound are tied. For JSSE, I don't know. Reading the code shows closeInbound and closeOutbound are quite decoupled. It's obvious there's usually no leak since it would be quite easy to observe, so the actual consequences of doing nothing is really unclear. closeInbound should be called only when explicitly reaching the end of input data. So it would be only if a socket read returns -1, and also possibly for some types of IOEs. OpenSSL then possibly needs some changes (calling closeInbound immediately closes everything). -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
