Mikhail Kruk wrote:
It is unclear to me if Marek
thinks this problem is due to a library bug or simply that s_client
should be clearing SSL_MODE_AUTO_RETRY in its block socket use case for
that program. We all know that OpenSSL s_client has a command line
option to enable nonblocking mode so the discussion about we should be
using non-blocking is bogus in this situation, maybe this should be the
default for s_client anyway.
Well, if s_client is broken in the blocking mode maybe it should be
removed completely. I did test it in the non-blocking mode and, of
course, it does not have the described error.
So are you saying the bug is:
* in s_client (for not correctly handling the SSL layer APIs) or
* the bug is in the SSL library (for issuing 2 blocking system calls
when SSL_MODE_AUTO_RETRY is not set within the same high level SSL layer
API call SSL_read() in this particular case) or
* you didn't have time to nail down the precise cause
If the bug is in the SSL library then s_client may not be broken, its
simply exposing a bug in a corner case.
Darryl
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
