> Nobody is suggesting that this should change. But if SSL_MODE_AUTO_RETRY
> is not set it should consistently return SSL_ERROR_WANT_READ when
> renegotiation is in progress, not sometimes return it and sometimes not.
> If it is impossible to fix it to always consistently return
> SSL_ERROR_WANT_READ, API should be changed. SSL_MODE_AUTO_RETRY
> should be
> forced to be always set and the SSL_read documentatin should be
> changed to
> say that it will never return WANT_READ or WANT_WRITE if
> underlying BIO is
> blocking. The current behavior is confusing and not properly documented.
I agree. SSL_read on a blocking socket should block until
application-level
data is available, just as read does on a TCP connection.
The current documentation suggests that it's possible to avoid blocking
with a blocking socket. This is impossible and anything that leads people to
the opposite conclusion will just encourage the creation of more code with
bugs in corner cases.
DS
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
