2
0

SSL_CTX_set_mode.pod 2.4 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081
  1. =pod
  2. =head1 NAME
  3. SSL_CTX_set_mode, SSL_set_mode, SSL_CTX_get_mode, SSL_get_mode - manipulate SSL engine mode
  4. =head1 SYNOPSIS
  5. #include <openssl/ssl.h>
  6. long SSL_CTX_set_mode(SSL_CTX *ctx, long mode);
  7. long SSL_set_mode(SSL *ssl, long mode);
  8. long SSL_CTX_get_mode(SSL_CTX *ctx);
  9. long SSL_get_mode(SSL *ssl);
  10. =head1 DESCRIPTION
  11. SSL_CTX_set_mode() adds the mode set via bitmask in B<mode> to B<ctx>.
  12. Options already set before are not cleared.
  13. SSL_set_mode() adds the mode set via bitmask in B<mode> to B<ssl>.
  14. Options already set before are not cleared.
  15. SSL_CTX_get_mode() returns the mode set for B<ctx>.
  16. SSL_get_mode() returns the mode set for B<ssl>.
  17. =head1 NOTES
  18. The following mode changes are available:
  19. =over 4
  20. =item SSL_MODE_ENABLE_PARTIAL_WRITE
  21. Allow SSL_write(..., n) to return r with 0 < r < n (i.e. report success
  22. when just a single record has been written). When not set (the default),
  23. SSL_write() will only report success once the complete chunk was written.
  24. Once SSL_write() returns with r, r bytes have been successfully written
  25. and the next call to SSL_write() must only send the n-r bytes left,
  26. imitating the behaviour of write().
  27. =item SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER
  28. Make it possible to retry SSL_write() with changed buffer location
  29. (the buffer contents must stay the same). This is not the default to avoid
  30. the misconception that non-blocking SSL_write() behaves like
  31. non-blocking write().
  32. =item SSL_MODE_AUTO_RETRY
  33. Never bother the application with retries if the transport is blocking.
  34. If a renegotiation take place during normal operation, a
  35. L<SSL_read(3)|SSL_read(3)> or L<SSL_write(3)|SSL_write(3)> would return
  36. with -1 and indicate the need to retry with SSL_ERROR_WANT_READ.
  37. In a non-blocking environment applications must be prepared to handle
  38. incomplete read/write operations.
  39. In a blocking environment, applications are not always prepared to
  40. deal with read/write operations returning without success report. The
  41. flag SSL_MODE_AUTO_RETRY will cause read/write operations to only
  42. return after the handshake and successful completion.
  43. =back
  44. =head1 RETURN VALUES
  45. SSL_CTX_set_mode() and SSL_set_mode() return the new mode bitmask
  46. after adding B<mode>.
  47. SSL_CTX_get_mode() and SSL_get_mode() return the current bitmask.
  48. =head1 SEE ALSO
  49. L<ssl(3)|ssl(3)>, L<SSL_read(3)|SSL_read(3)>, L<SSL_write(3)|SSL_write(3)>
  50. =head1 HISTORY
  51. SSL_MODE_AUTO_RETRY as been added in OpenSSL 0.9.6.
  52. =cut