Skip to content

M
mongoose
Commit 27c66563 authored by Sergey Lyubka's avatar Sergey Lyubka
Browse files
Options

SSL_accept fixes

parent ffe83051
Hide whitespace changes
Inline Side-by-side
Showing with 10 additions and 6 deletions
mongoose.c
View file @ 27c66563
...@@ -658,7 +658,7 @@ static void ns_read_from_socket(struct ns_connection *conn) { ...@@ -658,7 +658,7 @@ static void ns_read_from_socket(struct ns_connection *conn) {
int ssl_err = SSL_get_error(conn->ssl, res); int ssl_err = SSL_get_error(conn->ssl, res);
DBG(("%p res %d %d", conn, res, ssl_err)); DBG(("%p res %d %d", conn, res, ssl_err));
if (res == 1) { if (res == 1) {
conn->flags |= NSF_SSL_HANDSHAKE_DONE; conn->flags = NSF_SSL_HANDSHAKE_DONE;
} else if (res == 0 || ssl_err == 2 || ssl_err == 3) { } else if (res == 0 || ssl_err == 2 || ssl_err == 3) {
return; // Call us again return; // Call us again
} else { } else {
...@@ -680,8 +680,15 @@ static void ns_read_from_socket(struct ns_connection *conn) { ...@@ -680,8 +680,15 @@ static void ns_read_from_socket(struct ns_connection *conn) {
if (conn->flags & NSF_SSL_HANDSHAKE_DONE) { if (conn->flags & NSF_SSL_HANDSHAKE_DONE) {
n = SSL_read(conn->ssl, buf, sizeof(buf)); n = SSL_read(conn->ssl, buf, sizeof(buf));
} else { } else {
if (SSL_accept(conn->ssl) == 1) { int res = SSL_accept(conn->ssl);
int ssl_err = SSL_get_error(conn->ssl, res);
DBG(("%p res %d %d", conn, res, ssl_err));
if (res == 1) {
conn->flags |= NSF_SSL_HANDSHAKE_DONE; conn->flags |= NSF_SSL_HANDSHAKE_DONE;
} else if (res == 0 || ssl_err == 2 || ssl_err == 3) {
return; // Call us again
} else {
conn->flags |= NSF_CLOSE_IMMEDIATELY;
} }
return; return;
} }
...@@ -842,10 +849,6 @@ struct ns_connection *ns_connect(struct ns_server *server, const char *host, ...@@ -842,10 +849,6 @@ struct ns_connection *ns_connect(struct ns_server *server, const char *host,
struct ns_connection *conn = NULL; struct ns_connection *conn = NULL;
int connect_ret_val; int connect_ret_val;
#ifndef NS_ENABLE_SSL
if (use_ssl) return 0;
#endif
if (host == NULL || (he = gethostbyname(host)) == NULL || if (host == NULL || (he = gethostbyname(host)) == NULL ||
(sock = socket(AF_INET, SOCK_STREAM, 0)) == INVALID_SOCKET) { (sock = socket(AF_INET, SOCK_STREAM, 0)) == INVALID_SOCKET) {
DBG(("gethostbyname(%s) failed: %s", host, strerror(errno))); DBG(("gethostbyname(%s) failed: %s", host, strerror(errno)));
...@@ -859,6 +862,7 @@ struct ns_connection *ns_connect(struct ns_server *server, const char *host, ...@@ -859,6 +862,7 @@ struct ns_connection *ns_connect(struct ns_server *server, const char *host,
connect_ret_val = connect(sock, (struct sockaddr *) &sin, sizeof(sin)); connect_ret_val = connect(sock, (struct sockaddr *) &sin, sizeof(sin));
if (ns_is_error(connect_ret_val)) { if (ns_is_error(connect_ret_val)) {
closesocket(sock);
return NULL; return NULL;
} else if ((conn = (struct ns_connection *) } else if ((conn = (struct ns_connection *)
NS_MALLOC(sizeof(*conn))) == NULL) { NS_MALLOC(sizeof(*conn))) == NULL) {
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment