diff options
| author | Holger Weiss <holger@zedat.fu-berlin.de> | 2013-08-20 21:17:23 (GMT) |
|---|---|---|
| committer | Holger Weiss <holger@zedat.fu-berlin.de> | 2013-08-20 21:17:23 (GMT) |
| commit | f4b90cabc0025e14948c03f6ee9e9ccd51c31fb2 (patch) | |
| tree | 30ed6d8cd3926dc4cdfec0f7bd752a112c9a759f | |
| parent | 7a80e27fb38b26713ac5a1f6810b99519a31dbf3 (diff) | |
| download | monitoring-plugins-f4b90cabc0025e14948c03f6ee9e9ccd51c31fb2.tar.gz | |
Set SSL_MODE_AUTO_RETRY flag
We use OpenSSL (or GnuTLS) with blocking semantics, and we don't want
SSL_read(3) or SSL_write(3) calls to return SSL_ERROR_WANT_READ or
SSL_ERROR_WANT_WRITE (see #3614716).
| -rw-r--r-- | plugins/sslutils.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/plugins/sslutils.c b/plugins/sslutils.c index 78317f8..818f799 100644 --- a/plugins/sslutils.c +++ b/plugins/sslutils.c | |||
| @@ -95,6 +95,7 @@ int np_net_ssl_init_with_hostname_version_and_cert(int sd, char *host_name, int | |||
| 95 | #ifdef SSL_OP_NO_TICKET | 95 | #ifdef SSL_OP_NO_TICKET |
| 96 | SSL_CTX_set_options(c, SSL_OP_NO_TICKET); | 96 | SSL_CTX_set_options(c, SSL_OP_NO_TICKET); |
| 97 | #endif | 97 | #endif |
| 98 | SSL_CTX_set_mode(c, SSL_MODE_AUTO_RETRY); | ||
| 98 | if ((s = SSL_new(c)) != NULL) { | 99 | if ((s = SSL_new(c)) != NULL) { |
| 99 | #ifdef SSL_set_tlsext_host_name | 100 | #ifdef SSL_set_tlsext_host_name |
| 100 | if (host_name != NULL) | 101 | if (host_name != NULL) |