SSL_CTX_set_mode 3 2002-06-09 0.9.9-dev OpenSSL
NAME
SSL_CTX_set_mode, SSL_set_mode, SSL_CTX_get_mode, SSL_get_mode - manipulate SSL engine mode
LIBRARY
libcrypto, -lcrypto
SYNOPSIS
#include
long SSL_CTX_set_mode(SSL_CTX *ctx, long mode);
long SSL_set_mode(SSL *ssl, long mode);
long SSL_CTX_get_mode(SSL_CTX *ctx);
long SSL_get_mode(SSL *ssl);
DESCRIPTION
_S_S_L___C_T_X___s_e_t___m_o_d_e_(_) adds the mode set via bitmask in mmooddee to ccttxx.
Options already set before are not cleared.
_S_S_L___s_e_t___m_o_d_e_(_) adds the mode set via bitmask in mmooddee to ssssll.
Options already set before are not cleared.
_S_S_L___C_T_X___g_e_t___m_o_d_e_(_) returns the mode set for ccttxx.
_S_S_L___g_e_t___m_o_d_e_(_) returns the mode set for ssssll.
NOTES
The following mode changes are available:
-
SSL_MODE_ENABLE_PARTIAL_WRITE
Allow SSL_write(..., n) to return r with 0 < r < n (i.e. report success
-
when just a single record has been written). When not set (the default),
_S_S_L___w_r_i_t_e_(_) will only report success once the complete chunk was written.
Once _S_S_L___w_r_i_t_e_(_) returns with r, r bytes have been successfully written
and the next call to _S_S_L___w_r_i_t_e_(_) must only send the n-r bytes left,
imitating the behaviour of _w_r_i_t_e_(_).
-
SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER
Make it possible to retry _S_S_L___w_r_i_t_e_(_) with changed buffer location
-
(the buffer contents must stay the same). This is not the default to avoid
the misconception that non-blocking _S_S_L___w_r_i_t_e_(_) behaves like
non-blocking _w_r_i_t_e_(_).
-
SSL_MODE_AUTO_RETRY
Never bother the application with retries if the transport is blocking.
-
If a renegotiation take place during normal operation, a
_S_S_L___r_e_a_d(3) or _S_S_L___w_r_i_t_e(3) would return
with -1 and indicate the need to retry with SSL_ERROR_WANT_READ.
In a non-blocking environment applications must be prepared to handle
incomplete read/write operations.
In a blocking environment, applications are not always prepared to
deal with read/write operations returning without success report. The
flag SSL_MODE_AUTO_RETRY will cause read/write operations to only
return after the handshake and successful completion.
RETURN VALUES
_S_S_L___C_T_X___s_e_t___m_o_d_e_(_) and _S_S_L___s_e_t___m_o_d_e_(_) return the new mode bitmask
after adding mmooddee.
_S_S_L___C_T_X___g_e_t___m_o_d_e_(_) and _S_S_L___g_e_t___m_o_d_e_(_) return the current bitmask.
SEE ALSO
_s_s_l(3), _S_S_L___r_e_a_d(3), _S_S_L___w_r_i_t_e(3)
HISTORY
SSL_MODE_AUTO_RETRY as been added in OpenSSL 0.9.6.