SSL_CTX_set_mode 3 2002-06-09 0.9.9-dev OpenSSL

NAME

SSL_CTX_set_mode, SSL_set_mode, SSL_CTX_get_mode, SSL_get_mode - manipulate SSL engine mode

LIBRARY

libcrypto, -lcrypto

SYNOPSIS


 #include 


 long SSL_CTX_set_mode(SSL_CTX *ctx, long mode);
 long SSL_set_mode(SSL *ssl, long mode);


 long SSL_CTX_get_mode(SSL_CTX *ctx);
 long SSL_get_mode(SSL *ssl);

DESCRIPTION

_S_S_L___C_T_X___s_e_t___m_o_d_e_(_) adds the mode set via bitmask in mmooddee to ccttxx. Options already set before are not cleared.

_S_S_L___s_e_t___m_o_d_e_(_) adds the mode set via bitmask in mmooddee to ssssll. Options already set before are not cleared.

_S_S_L___C_T_X___g_e_t___m_o_d_e_(_) returns the mode set for ccttxx.

_S_S_L___g_e_t___m_o_d_e_(_) returns the mode set for ssssll.

NOTES

The following mode changes are available:
SSL_MODE_ENABLE_PARTIAL_WRITE Allow SSL_write(..., n) to return r with 0 < r < n (i.e. report success
when just a single record has been written). When not set (the default), _S_S_L___w_r_i_t_e_(_) will only report success once the complete chunk was written. Once _S_S_L___w_r_i_t_e_(_) returns with r, r bytes have been successfully written and the next call to _S_S_L___w_r_i_t_e_(_) must only send the n-r bytes left, imitating the behaviour of _w_r_i_t_e_(_).
SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER Make it possible to retry _S_S_L___w_r_i_t_e_(_) with changed buffer location
(the buffer contents must stay the same). This is not the default to avoid the misconception that non-blocking _S_S_L___w_r_i_t_e_(_) behaves like non-blocking _w_r_i_t_e_(_).
SSL_MODE_AUTO_RETRY Never bother the application with retries if the transport is blocking.
If a renegotiation take place during normal operation, a _S_S_L___r_e_a_d(3) or _S_S_L___w_r_i_t_e(3) would return with -1 and indicate the need to retry with SSL_ERROR_WANT_READ. In a non-blocking environment applications must be prepared to handle incomplete read/write operations. In a blocking environment, applications are not always prepared to deal with read/write operations returning without success report. The flag SSL_MODE_AUTO_RETRY will cause read/write operations to only return after the handshake and successful completion.

RETURN VALUES

_S_S_L___C_T_X___s_e_t___m_o_d_e_(_) and _S_S_L___s_e_t___m_o_d_e_(_) return the new mode bitmask after adding mmooddee.

_S_S_L___C_T_X___g_e_t___m_o_d_e_(_) and _S_S_L___g_e_t___m_o_d_e_(_) return the current bitmask.

SEE ALSO

_s_s_l(3), _S_S_L___r_e_a_d(3), _S_S_L___w_r_i_t_e(3)

HISTORY

SSL_MODE_AUTO_RETRY as been added in OpenSSL 0.9.6.