D 2025-10-07T13:21:44.782
J foundin 1.8.0
J icomment When\sopening\sa\sserver\ssocket\swith\s`tls::socket\s-server`,\severy\stime\sa\sclient\sconnects,\sa\snew\sSSL_CTX\sstructure\sis\screated\sfor\sthat\sconnection.\r\nThis\smeans,\sif\scertificates\sare\sprovided\swith\s`-certfile`,\s`-cafile`\sand\s`-keyfile`,\sthey\sare\sopened\sand\sread\sfor\severy\sconnection,\sas\scan\sbe\sseen\swith\s`strace`.\sHow\sdo\sI\savoid\sthis?\r\n\r\n-\sUsing\s`-cert`\sand\s`-file`\sinstead\srequires\sa\smanual\sconversion\sof\sPEM-files\sto\sDER\s(and\sthere\sis\sno\sequivalent\sfor\s`-cafile`).\r\n-\s`-model`\scannot\sbe\ssupplied\sto\s`tls::socket`,\sbut\sthis\swould\srequire\sa\sweird\sworkaround\sto\sget\sa\s"model\sconnection"\sanyway.\r\n\r\nOptimally\s`tls::socket\s-server`\swould\scache\sthe\sfirst\sSSL_CTX\sand\suse\sit\sfor\ssubsequent\sconnections.
J login anonymous
J mimetype text/x-markdown
J severity Minor
J status Open
J title tls::socket,\sbut\swith\sshared\sSSL_CTX
J type Code\sDefect
K 9afaf41635dd222b8e8cfaa0f3b61f0e52abd707
U anonymous
Z 6f17454ba06be3ea8b307edf3ed239f9