git.openssl.org Git - openssl.git/commit

author	Matt Caswell <matt@openssl.org>
	Tue, 17 May 2016 11:28:14 +0000 (12:28 +0100)
committer	Matt Caswell <matt@openssl.org>
	Fri, 20 May 2016 13:11:11 +0000 (14:11 +0100)
commit	464175692f1f00a9e5a87f040d0c59184d63b53b
tree	0770c84cf8e5eae29b9d5cf9fd5c168179ea4590	tree \| snapshot
parent	72106aaab439eddc69df29aa328fb5eeb2086f84	commit \| diff

Simplify SSL BIO buffering logic

The write BIO for handshake messages is bufferred so that we only write
out to the network when we have a complete flight. There was some
complexity in the buffering logic so that we switched buffering on and
off at various points through out the handshake. The only real reason to
do this was historically it complicated the state machine when you wanted
to flush because you had to traverse through the "flush" state (in order
to cope with NBIO). Where we knew up front that there was only going to
be one message in the flight we switched off buffering to avoid that.

In the new state machine there is no longer a need for a flush state so
it is simpler just to have buffering on for the whole handshake. This
also gives us the added benefit that we can simply call flush after every
flight even if it only has one message in it. This means that BIO authors
can implement their own buffering strategies and not have to be aware of
the state of the SSL object (previously they would have to switch off
their own buffering during the handshake because they could not rely on
a flush being received when they really needed to write data out). This
last point addresses GitHub Issue #322.

Reviewed-by: Andy Polyakov <appro@openssl.org>

ssl/ssl_lib.c		diff \| blob \| history
ssl/ssl_locl.h		diff \| blob \| history
ssl/statem/statem.c		diff \| blob \| history
ssl/statem/statem_clnt.c		diff \| blob \| history
test/heartbeat_test.c		diff \| blob \| history