Hi, I am developing a secure web server application based on OpenSSL. The server is non-threaded and can thus process only one client request at a time. It uses blocking sockets to accept incoming web client requests.
During a connection handshake, the server gets stuck forever (or at least > 2 hours) in a call to SSL_accept() for the case where it has sent its certificate but the client doesn't respond back: because the server's certificate is unknown on the client side, the web client (a standard browser) will prompt the user to examine the certificate and either accept or reject it. While this client/user interaction hasn't finished (eg. because the user didn't notice) the server is effectively blocked. How can I prevent this from happening ? Is there a method to set a connection handshake timeout on the server side ? I have tried SSL_CTX_set_timeout() but to no effect. -- Cheers, Thomas. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
