[exim-dev] [Bug 1242] New: Exim doesn't retry OpenSSL read o…

Top Page
Delete this message
Reply to this message
Author: Phil Pennock
Date:  
To: exim-dev
Subject: [exim-dev] [Bug 1242] New: Exim doesn't retry OpenSSL read operations on request
------- You are receiving this mail because: -------
You are on the CC list for the bug.

http://bugs.exim.org/show_bug.cgi?id=1242
           Summary: Exim doesn't retry OpenSSL read operations on request
           Product: Exim
           Version: 4.77
          Platform: Other
        OS/Version: All
            Status: NEW
          Severity: bug
          Priority: high
         Component: TLS
        AssignedTo: nigel@???
        ReportedBy: pdp@???
                CC: exim-dev@???



It looks as though some recent change in OpenSSL (1.0.1 perhaps?) is causing
some TLS operations to return SSL_ERROR_WANT_READ after a renegotiation. This
exposes that Exim does not handle this operation.

See: http://www.openssl.org/docs/ssl/SSL_get_error.html

We need to handle, minimally, SSL_ERROR_WANT_READ and SSL_ERROR_WANT_WRITE
operations.

For me, with openssl s_client to test, I get a renegotiation after RCPT, every
single time, which causes Exim to drop the connection.


--
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email