projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1aac20f) | patch
Enable SSL_MODE_AUTO_RETRY by default
authorKurt Roeckx <kurt@roeckx.be>
Tue, 15 May 2018 17:01:41 +0000 (19:01 +0200)
committerKurt Roeckx <kurt@roeckx.be>
Tue, 22 May 2018 20:45:28 +0000 (22:45 +0200)
commit693cf80c6ff54ae276a44d305d4ad07168ec6895
treebed0784d42fe6d1544cbe3c1ebf1abe56eb65cf1tree | snapshot
parent1aac20f5095fca8691ef4495c3e7438c935a33dccommit | diff
Enable SSL_MODE_AUTO_RETRY by default

Because TLS 1.3 sends more non-application data records some clients run
into problems because they don't expect SSL_read() to return and set
SSL_ERROR_WANT_READ after processing it.

This can cause problems for clients that use blocking I/O and use
select() to see if data is available. It can be cleared using
SSL_CTX_clear_mode().

Reviewed-by: Matt Caswell <matt@openssl.org>
GH: #6260
CHANGES diff | blob | history
apps/s_client.c diff | blob | history
apps/s_server.c diff | blob | history
ssl/ssl_lib.c diff | blob | history
test/sslapitest.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.