[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [Libevent-users] How to set "allow_dirty_shutdown" for SSL?

To: libevent-users@xxxxxxxxxxxxx
Subject: Re: [Libevent-users] How to set "allow_dirty_shutdown" for SSL?
From: Nick Mathewson <nickm@xxxxxxxxxxxxx>
Date: Sat, 16 Jan 2010 00:30:43 -0500
Delivered-to: archiver@xxxxxxxx
Delivered-to: libevent-users-outgoing@xxxxxxxx
Delivered-to: libevent-users@xxxxxxxx
Delivery-date: Sat, 16 Jan 2010 00:30:55 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:sender:received:in-reply-to :references:date:x-google-sender-auth:message-id:subject:from:to :content-type:content-transfer-encoding; bh=3L/DGE3G1xT96avGtBXDxdGMwV0oD5j+BwnJdpckmf4=; b=PTjMg5q1My0rx2yfugW3d7pqXsUe4JX2gX45jNj0knQb6YxSLc/qkJNrSlCdQfCc2l 09Mwuqbk34pIXQW4Gz0UktTJdPya75i+Ya/+nR8s/vZR6eoQgXOO94sGyp/5dyHFU3jB +xrn7EqgnfOefWVE5q8Rl8AQvNneVXuBRPSek=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type :content-transfer-encoding; b=RHZGXqBFt7CE6ZvmaHL6G3EQ2ydQfQp6OQIOG6o0XGDuyxK6jVkb8OpgsGHXy7QTzZ 3SC6JWo7sIF+4gJtH5eC7KnQE5lyE3Am5p0L26NtHzRLl3BlHkZ4hL+IpquAkYQbfiaP m0NmyOQHBJI9zW4IItV6QXA6HtM6ZkEGq9i1c=
In-reply-to: <4B5046B9.6040303@xxxxxxxxxxx>
References: <4B4B5FD2.7080508@xxxxxxxxxxx> <e8ac78311001111221y637bd511w81499173206582db@xxxxxxxxxxxxxx> <4B4C9C8F.8000306@xxxxxxxxxxx> <e8ac78311001141418u30ab45e9rd3fcdc5508a34e1@xxxxxxxxxxxxxx> <4B5046B9.6040303@xxxxxxxxxxx>
Reply-to: libevent-users@xxxxxxxxxxxxx
Sender: owner-libevent-users@xxxxxxxxxxxxx

On Fri, Jan 15, 2010 at 5:43 AM, Joachim Bauch <jojo@xxxxxxxxxxx> wrote:
> Nick Mathewson wrote:
> [...]
>>
>> There _is_ a mechanism to distinguish OpenSSL errors from one another
>> from eventcb: bufferevent_get_openssl_error().   The only problem is
>> that a closed connection is not necessarily reported by openssl as an
>> openssl error.  I wonder if we can find some unused part of the
>> openssl error space to reserve for libevent.
>
> Unfortunately I can't use this method as the event is not triggered by
> OpenSSL, but by my underlying bufferevent (through be_openssl_eventcb),
> so the OpenSSL error is always "0" for me.

Right, but my point was that be_openssl_eventcb could be modified to
queue an error that you _could_ get through calling
bufferevent_get_openssl_error().  All it would need to do is call
put_error() with an appropriate error code.

The tricky bit would be picking a good error code that OpenSSL would
be guaranteed not to be using.  I'm pretty sure (based on reading code
and conversations with an openssl developer) that any error value
chosen with its "l" value equal to SSL_ERR_USER or greater is reserved
for extension use.

--
Nick
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxx with
unsubscribe libevent-users    in the body.

References:
- [Libevent-users] How to set "allow_dirty_shutdown" for SSL?
  - From: Joachim Bauch
- Re: [Libevent-users] How to set "allow_dirty_shutdown" for SSL?
  - From: Nick Mathewson
- Re: [Libevent-users] How to set "allow_dirty_shutdown" for SSL?
  - From: Joachim Bauch
- Re: [Libevent-users] How to set "allow_dirty_shutdown" for SSL?
  - From: Nick Mathewson
- Re: [Libevent-users] How to set "allow_dirty_shutdown" for SSL?
  - From: Joachim Bauch

Prev by Author: Re: [Libevent-users] How to set "allow_dirty_shutdown" for SSL?
Next by Author: Re: [Libevent-users] Proposal for libevent-2 to provide functions to hide event structure details
Previous by thread: Re: [Libevent-users] How to set "allow_dirty_shutdown" for SSL?
Next by thread: [Libevent-users] Where is the source code repo?
Index(es):
- Author
- Thread