Issue #8222: Enable the SSL_MODE_AUTO_RETRY flag on SSL sockets, so that blocking

reads and writes are always retried by OpenSSL itself. (this is a followup to issue #3890)

Issue #8222: Enable the SSL_MODE_AUTO_RETRY flag on SSL sockets, so that blocking
reads and writes are always retried by OpenSSL itself. (this is a followup to issue #3890)
eee91cda · Antoine Pitrou · c7024e7f · eee91cda · eee91cda
Commit eee91cda authored Mar 26, 2010 by Antoine Pitrou
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 3 deletions

Misc/NEWS Misc/NEWS +3 -1

Modules/_ssl.c Modules/_ssl.c +1 -2

No files found.
--- a/Misc/NEWS
+++ b/Misc/NEWS
@@ -59,7 +59,9 @@ Library
 - Issue #8200: logging: Handle errors when multiprocessing is not
  fully loaded when logging occurs.

- Issue #3890: Fix recv() and recv_into() on non-blocking SSL sockets.
+- Issue #3890, #8222: Fix recv() and recv_into() on non-blocking SSL sockets.
+  Also, enable the SSL_MODE_AUTO_RETRY flag on SSL sockets, so that blocking
+  reads and writes are always retried by OpenSSL itself.

 - Issue #8179: Fix macpath.realpath() on a non-existing path.


--- a/Modules/_ssl.c
+++ b/Modules/_ssl.c
@@ -9,8 +9,6 @@
   directly.

   XXX should partial writes be enabled, SSL_MODE_ENABLE_PARTIAL_WRITE?
-
-   XXX what about SSL_MODE_AUTO_RETRY?
 */

 #include "Python.h"
@@ -370,6 +368,7 @@ newPySSLObject(PySocketSockObject *Sock, char *key_file, char *cert_file,
 	self->ssl = SSL_new(self->ctx); /* New ssl struct */
 	PySSL_END_ALLOW_THREADS
 	SSL_set_fd(self->ssl, Sock->sock_fd);	/* Set the socket for SSL */
+	SSL_set_mode(self->ssl, SSL_MODE_AUTO_RETRY);

 	/* If the socket is in non-blocking mode or timeout mode, set the BIO
 	 * to non-blocking mode (blocking is the default)