[openssl.org #162] SSL_shutdown return 0 in case of SSLv3_client_method
Note that SSL_get_error() is not meant to be used on SSL_shutdown() return values (although it would be good to have some API that behaves similarly to SSL_read, SSL_write, SSL_do_handshake etc. in this respect). If SSL_shutdown() always returns 0 when called multiple times, this is probably because the server (which, presumably, is not OpenSSL-based) does not properly close the connection and fails to send a closure alert. This is a protocol violation; however, it should be safe to tolerate it because connection closure will not have to be authenticated for most application protocols. Ticket closed because this looks like a bug in the server software, which appears to be not OpenSSL-based. __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #162] SSL_shutdown return 0 in case of SSLv3_client_method
Can we assume that this won't be handled for 0.9.7a? [jaenicke - Thu Nov 14 15:35:03 2002]: [levitte - Thu Nov 14 15:31:34 2002]: Lütz, did you get anywhere with this? No. I didn't have the time to look into it. And I don't know, whether I will find the time before next week. Maybe some hours are available on Saturday and/or Sunday... Best regards, Lutz -- Richard Levitte __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #162] SSL_shutdown return 0 in case of SSLv3_client_method
Lütz, did you get anywhere with this? [jaenicke - Tue Jul 23 15:13:25 2002]: [[EMAIL PROTECTED] - Tue Jul 23 15:07:51 2002]: The problem is that SSL_shutdown() returns 0 with SSL_get_error() == SSL_ERROR_SYSCALL in both cases. The first 0 is ok. The second 0 is not ok, it may indicate, that the peer closed the connection but did not send back the close message. This won't hurt you much and could probably be ignored. In any case I'll have to go through the code again and maybe update the manual page to be more clear about what might happen. Therefore I have bounced your message into the request tracker. PS: If I'm using SSLv2_client_method instead of SSLv3_client_method, the first SSL_shutdown() returns 1 (no problems) SSLv2 does not specify correct shutdown behaviour, so it cannot fail :-) Best regards, Lutz -- Richard Levitte __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #162] SSL_shutdown return 0 in case of SSLv3_client_method
[levitte - Thu Nov 14 15:31:34 2002]: Lütz, did you get anywhere with this? No. I didn't have the time to look into it. And I don't know, whether I will find the time before next week. Maybe some hours are available on Saturday and/or Sunday... Best regards, Lutz __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]