[exim-dev] [Bug 1242] New: Exim doesn't retry OpenSSL read o…

Top Page
This message is part of the following thread:
M\the complete thread tree sorted by date
MM 
Phil Pennock at ->
Delete this message
Reply to this message
Author: Phil Pennock
Date:  
To: exim-dev
Subject: [exim-dev] [Bug 1242] New: Exim doesn't retry OpenSSL read operations on request
------- You are receiving this mail because: -------
You are on the CC list for the bug. 

http://bugs.exim.org/show_bug.cgi?id=1242
           Summary: Exim doesn't retry OpenSSL read operations on request
           Product: Exim
           Version: 4.77
          Platform: Other
        OS/Version: All
            Status: NEW
          Severity: bug
          Priority: high
         Component: TLS
        AssignedTo: nigel@???
        ReportedBy: pdp@???
                CC: exim-dev@???



It looks as though some recent change in OpenSSL (1.0.1 perhaps?) is causing
some TLS operations to return SSL_ERROR_WANT_READ after a renegotiation. This
exposes that Exim does not handle this operation.

See: http://www.openssl.org/docs/ssl/SSL_get_error.html

We need to handle, minimally, SSL_ERROR_WANT_READ and SSL_ERROR_WANT_WRITE
operations.

For me, with openssl s_client to test, I get a renegotiation after RCPT, every
single time, which causes Exim to drop the connection.


--
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email

This message was posted to the following mailing lists:
Exim-dev
Mailing List Info | Nearby Messages		<-[exim-dev] [Bug 1156] GnuTLS protocol support update[exim-dev] [Bug 1240] Newline in -tls_peerdn corrupts spool file->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)