Hi Mark,
Thanks for the response. I will try to explain my scenario a little
further.
My application does an ssl_connect. But the server application is buggy,
becuase of which the ssl_connect does not succeed, but returns
SSL_ERROR_WANT_READ/SSL_ERROR_WANT_WRITE error, which my application
interprets as an "inporgress" connection attempt.
However, the ssl_connect call does not seem to return at all even after a
long time. Thus, resources in my application which are associated with this
"inprogress" connection, remain indefinitely hanging.
Thus, there seems to be a need for ssl_connect to timeout, in order to
protect against such buggy servers. My query was:
1) Does ssl_connect have such an internal timeout mechanism after which the
OpenSSL will give up on the connection attempt and return failure for the
ssl_connect call?
OR
2) Does a client application have to implement such a timer in its own
scope?
Any pointers on the same will be appreciated.
============================================================================================================================
thanks and regards
Seema
"Mark"
<[EMAIL PROTECTED]
mail.com> To
Sent by: openssl-users@openssl.org
owner-openssl-use cc
[EMAIL PROTECTED]
Subject
RE: ssl_connect timer???
11/28/2005 03:02
PM
Please respond to
[EMAIL PROTECTED]
nssl.org
Hi,
> with a UA using SSL_connect and due to some reason if
> SSL_get_error returns
> SSL_ERROR_WANT_READ/SSL_ERROR_WANT_WRITE. For non
> blocking BIOs I belive the operation of
> SSL_connect with endpoint will still be going on in this case
Try using SSL_CTX_set_mode(ctx, SSL_MODE_AUTO_RETRY);
Mark.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
*********************** FSS-Private ***********************
"DISCLAIMER: This message is proprietary to Hughes Software Systems Limited
(HSS) and is intended solely for the use of the individual to whom it is
addressed. It may contain privileged or confidential information and
should not be circulated or used for any purpose other than for what it is
intended. If you have received this message in error, please notify the
originator immediately. If you are not the intended recipient, you are
notified that you are strictly prohibited from using, copying, altering, or
disclosing the contents of this message. HSS accepts no responsibility for
loss or damage arising from the use of the information transmitted by this
email including damage from virus."
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
