nginx-ranges: src/event/ngx_event

annotate src/event/ngx_event_openssl.c @ 34:aab2ea7c0458 NGINX_0_1_17

nginx 0.1.17 *) Change: the ngx_http_rewrite_module was rewritten from the scratch. Now it is possible to redirect, to return the error codes, to check the variables and referrers. The directives can be used inside locations. The redirect directive was canceled. *) Feature: the ngx_http_geo_module. *) Feature: the proxy_set_x_var and fastcgi_set_var directives. *) Bugfix: the location configuration with "=" modifier may be used in another location. *) Bugfix: the correct content type was set only for requests that use small caps letters in extension. *) Bugfix: if the proxy_pass or fastcgi_pass directives were set in the location, and access was denied, and the error was redirected to a static page, then the segmentation fault occurred. *) Bugfix: if in a proxied "Location" header was a relative URL, then a host name and a slash were added to them; bug appeared in 0.1.14. *) Bugfix: the system error message was not logged on Linux.

author	Igor Sysoev <http://sysoev.ru>
date	Thu, 03 Feb 2005 00:00:00 +0300
parents	7ca9bdc82b3f
children	2879cd3a40cb

rev	line source
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	1
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	2 /*
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	3 * Copyright (C) Igor Sysoev
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	4 */
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	5
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	6
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	7 #include <ngx_config.h>
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	8 #include <ngx_core.h>
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	9 #include <ngx_event.h>
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	10
28 7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	11 #include <openssl/engine.h>
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	12
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	13
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	14 static void ngx_ssl_write_handler(ngx_event_t *wev);
18 6f8b0dc0f8dd nginx 0.1.9 Igor Sysoev <http://sysoev.ru> parents: 10 diff changeset	15 static ssize_t ngx_ssl_write(ngx_connection_t c, u_char data, size_t size);
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	16 static void ngx_ssl_read_handler(ngx_event_t *rev);
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	17
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	18
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	19 ngx_int_t ngx_ssl_init(ngx_log_t *log)
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	20 {
28 7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	21 ENGINE *engine;
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	22
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	23 SSL_library_init();
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	24 SSL_load_error_strings();
28 7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	25 ENGINE_load_builtin_engines();
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	26
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	27 return NGX_OK;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	28 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	29
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	30
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	31 ngx_int_t ngx_ssl_create_session(ngx_ssl_ctx_t ssl_ctx, ngx_connection_t c,
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	32 ngx_uint_t flags)
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	33 {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	34 ngx_ssl_t *ssl;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	35
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	36 if (!(ssl = ngx_pcalloc(c->pool, sizeof(ngx_ssl_t)))) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	37 return NGX_ERROR;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	38 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	39
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	40 if (!(ssl->buf = ngx_create_temp_buf(c->pool, NGX_SSL_BUFSIZE))) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	41 return NGX_ERROR;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	42 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	43
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	44 if (flags & NGX_SSL_BUFFER) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	45 ssl->buffer = 1;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	46 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	47
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	48 ssl->ssl = SSL_new(ssl_ctx);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	49
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	50 if (ssl->ssl == NULL) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	51 ngx_ssl_error(NGX_LOG_ALERT, c->log, 0, "SSL_new() failed");
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	52 return NGX_ERROR;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	53 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	54
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	55 if (SSL_set_fd(ssl->ssl, c->fd) == 0) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	56 ngx_ssl_error(NGX_LOG_ALERT, c->log, 0, "SSL_set_fd() failed");
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	57 return NGX_ERROR;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	58 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	59
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	60 SSL_set_accept_state(ssl->ssl);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	61
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	62 c->ssl = ssl;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	63
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	64 return NGX_OK;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	65 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	66
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	67
18 6f8b0dc0f8dd nginx 0.1.9 Igor Sysoev <http://sysoev.ru> parents: 10 diff changeset	68 ssize_t ngx_ssl_recv(ngx_connection_t c, u_char buf, size_t size)
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	69 {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	70 int n, sslerr;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	71 ngx_err_t err;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	72 char *handshake;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	73
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	74 n = SSL_read(c->ssl->ssl, buf, size);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	75
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	76 ngx_log_debug1(NGX_LOG_DEBUG_EVENT, c->log, 0, "SSL_read: %d", n);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	77
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	78 if (n > 0) {
28 7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	79
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	80 #if (NGX_DEBUG)
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	81
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	82 if (!c->ssl->handshaked && SSL_is_init_finished(c->ssl->ssl)) {
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	83 char buf[129], s, d;
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	84 SSL_CIPHER *cipher;
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	85
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	86 c->ssl->handshaked = 1;
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	87
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	88 cipher = SSL_get_current_cipher(c->ssl->ssl);
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	89
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	90 if (cipher) {
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	91 SSL_CIPHER_description(cipher, &buf[1], 128);
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	92
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	93 for (s = &buf[1], d = buf; *s; s++) {
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	94 if (s == ' ' && d == ' ') {
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	95 continue;
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	96 }
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	97
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	98 if (s == '\n' \|\| s == '\r') {
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	99 continue;
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	100 }
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	101
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	102 ++d = s;
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	103 }
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	104
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	105 if (*d != ' ') {
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	106 d++;
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	107 }
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	108
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	109 *d = '\0';
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	110
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	111 ngx_log_debug1(NGX_LOG_DEBUG_EVENT, c->log, 0,
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	112 "SSL cipher: \"%s\"", &buf[1]);
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	113 } else {
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	114 ngx_log_debug0(NGX_LOG_DEBUG_EVENT, c->log, 0,
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	115 "SSL no shared ciphers");
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	116 }
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	117 }
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	118
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	119 #endif
7ca9bdc82b3f nginx 0.1.14 Igor Sysoev <http://sysoev.ru> parents: 22 diff changeset	120
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	121 if (c->ssl->saved_write_handler) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	122
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	123 c->write->event_handler = c->ssl->saved_write_handler;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	124 c->ssl->saved_write_handler = NULL;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	125 c->write->ready = 1;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	126
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	127 if (ngx_handle_write_event(c->write, 0) == NGX_ERROR) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	128 return NGX_ERROR;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	129 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	130
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	131 if (ngx_mutex_lock(ngx_posted_events_mutex) == NGX_ERROR) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	132 return NGX_ERROR;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	133 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	134
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	135 ngx_post_event(c->write);
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	136
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	137 ngx_mutex_unlock(ngx_posted_events_mutex);
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	138 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	139
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	140 return n;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	141 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	142
2 cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	143 if (!SSL_is_init_finished(c->ssl->ssl)) {
10 46833bd150cb nginx 0.1.5 Igor Sysoev <http://sysoev.ru> parents: 4 diff changeset	144 handshake = " in SSL handshake";
2 cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	145
cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	146 } else {
cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	147 handshake = "";
cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	148 }
cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	149
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	150 sslerr = SSL_get_error(c->ssl->ssl, n);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	151
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	152 err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	153
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	154 ngx_log_debug1(NGX_LOG_DEBUG_EVENT, c->log, 0, "SSL_get_error: %d", sslerr);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	155
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	156 if (sslerr == SSL_ERROR_WANT_READ) {
4 4b2dafa26fe2 nginx 0.1.2 Igor Sysoev <http://sysoev.ru> parents: 2 diff changeset	157 c->read->ready = 0;
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	158 return NGX_AGAIN;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	159 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	160
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	161 if (sslerr == SSL_ERROR_WANT_WRITE) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	162 ngx_log_error(NGX_LOG_ALERT, c->log, err,
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	163 "SSL wants to write%s", handshake);
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	164
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	165 c->write->ready = 0;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	166
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	167 if (ngx_handle_write_event(c->write, 0) == NGX_ERROR) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	168 return NGX_ERROR;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	169 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	170
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	171 /*
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	172 * we do not set the timer because there is already the read event timer
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	173 */
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	174
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	175 if (c->ssl->saved_write_handler == NULL) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	176 c->ssl->saved_write_handler = c->write->event_handler;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	177 c->write->event_handler = ngx_ssl_write_handler;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	178 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	179
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	180 return NGX_AGAIN;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	181 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	182
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	183 c->ssl->no_rcv_shut = 1;
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	184 c->ssl->no_send_shut = 1;
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	185
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	186 if (sslerr == SSL_ERROR_ZERO_RETURN \|\| ERR_peek_error() == 0) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	187 ngx_log_error(NGX_LOG_INFO, c->log, err,
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	188 "client closed connection%s", handshake);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	189
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	190 return NGX_ERROR;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	191 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	192
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	193 ngx_ssl_error(NGX_LOG_ALERT, c->log, err,
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	194 "SSL_read() failed%s", handshake);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	195
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	196 return NGX_ERROR;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	197 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	198
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	199
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	200 static void ngx_ssl_write_handler(ngx_event_t *wev)
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	201 {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	202 ngx_connection_t *c;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	203
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	204 c = wev->data;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	205 c->read->event_handler(c->read);
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	206 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	207
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	208
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	209 /*
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	210 * OpenSSL has no SSL_writev() so we copy several bufs into our 16K buffer
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	211 * before the SSL_write() call to decrease a SSL overhead.
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	212 *
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	213 * Besides for protocols such as HTTP it is possible to always buffer
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	214 * the output to decrease a SSL overhead some more.
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	215 */
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	216
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	217 ngx_chain_t ngx_ssl_send_chain(ngx_connection_t c, ngx_chain_t *in,
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	218 off_t limit)
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	219 {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	220 int n;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	221 ngx_uint_t flush;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	222 ssize_t send, size;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	223 ngx_buf_t *buf;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	224
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	225 buf = c->ssl->buf;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	226
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	227 if (in && in->next == NULL && !c->buffered && !c->ssl->buffer) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	228
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	229 /*
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	230 * we avoid a buffer copy if the incoming buf is a single,
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	231 * our buffer is empty, and we do not need to buffer the output
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	232 */
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	233
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	234 n = ngx_ssl_write(c, in->buf->pos, in->buf->last - in->buf->pos);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	235
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	236 if (n == NGX_ERROR) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	237 return NGX_CHAIN_ERROR;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	238 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	239
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	240 if (n < 0) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	241 n = 0;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	242 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	243
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	244 in->buf->pos += n;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	245
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	246 return in;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	247 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	248
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	249
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	250 /* the maximum limit size is the maximum uint32_t value - the page size */
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	251
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	252 if (limit == 0 \|\| limit > NGX_MAX_UINT32_VALUE - ngx_pagesize) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	253 limit = NGX_MAX_UINT32_VALUE - ngx_pagesize;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	254 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	255
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	256
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	257 send = 0;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	258 flush = (in == NULL) ? 1 : 0;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	259
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	260 for ( ;; ) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	261
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	262 while (in && buf->last < buf->end) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	263 if (in->buf->last_buf) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	264 flush = 1;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	265 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	266
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	267 if (ngx_buf_special(in->buf)) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	268 in = in->next;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	269 continue;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	270 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	271
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	272 size = in->buf->last - in->buf->pos;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	273
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	274 if (size > buf->end - buf->last) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	275 size = buf->end - buf->last;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	276 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	277
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	278 /*
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	279 * TODO: the taking in->buf->flush into account can be
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	280 * implemented using the limit on the higher level
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	281 */
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	282
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	283 if (send + size > limit) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	284 size = limit - send;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	285 flush = 1;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	286 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	287
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	288 ngx_log_debug1(NGX_LOG_DEBUG_EVENT, c->log, 0,
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	289 "SSL buf copy: %d", size);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	290
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	291 ngx_memcpy(buf->last, in->buf->pos, size);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	292
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	293 buf->last += size;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	294
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	295 in->buf->pos += size;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	296 if (in->buf->pos == in->buf->last) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	297 in = in->next;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	298 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	299 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	300
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	301 size = buf->last - buf->pos;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	302
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	303 if (!flush && buf->last < buf->end && c->ssl->buffer) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	304 break;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	305 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	306
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	307 n = ngx_ssl_write(c, buf->pos, size);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	308
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	309 if (n == NGX_ERROR) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	310 return NGX_CHAIN_ERROR;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	311 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	312
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	313 if (n < 0) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	314 n = 0;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	315 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	316
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	317 buf->pos += n;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	318 send += n;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	319 c->sent += n;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	320
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	321 if (n < size) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	322 break;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	323 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	324
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	325 if (buf->pos == buf->last) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	326 buf->pos = buf->start;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	327 buf->last = buf->start;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	328 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	329
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	330 if (in == NULL \|\| send == limit) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	331 break;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	332 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	333 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	334
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	335 c->buffered = (buf->pos < buf->last) ? 1 : 0;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	336
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	337 return in;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	338 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	339
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	340
18 6f8b0dc0f8dd nginx 0.1.9 Igor Sysoev <http://sysoev.ru> parents: 10 diff changeset	341 static ssize_t ngx_ssl_write(ngx_connection_t c, u_char data, size_t size)
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	342 {
2 cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	343 int n, sslerr;
cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	344 ngx_err_t err;
cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	345 char *handshake;
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	346
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	347 ngx_log_debug1(NGX_LOG_DEBUG_EVENT, c->log, 0, "SSL to write: %d", size);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	348
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	349 n = SSL_write(c->ssl->ssl, data, size);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	350
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	351 ngx_log_debug1(NGX_LOG_DEBUG_EVENT, c->log, 0, "SSL_write: %d", n);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	352
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	353 if (n > 0) {
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	354 if (c->ssl->saved_read_handler) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	355
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	356 c->read->event_handler = c->ssl->saved_read_handler;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	357 c->ssl->saved_read_handler = NULL;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	358 c->read->ready = 1;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	359
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	360 if (ngx_handle_read_event(c->read, 0) == NGX_ERROR) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	361 return NGX_ERROR;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	362 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	363
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	364 if (ngx_mutex_lock(ngx_posted_events_mutex) == NGX_ERROR) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	365 return NGX_ERROR;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	366 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	367
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	368 ngx_post_event(c->read);
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	369
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	370 ngx_mutex_unlock(ngx_posted_events_mutex);
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	371 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	372
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	373 return n;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	374 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	375
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	376 sslerr = SSL_get_error(c->ssl->ssl, n);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	377
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	378 err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	379
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	380 ngx_log_debug1(NGX_LOG_DEBUG_EVENT, c->log, 0, "SSL_get_error: %d", sslerr);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	381
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	382 if (sslerr == SSL_ERROR_WANT_WRITE) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	383 c->write->ready = 0;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	384 return NGX_AGAIN;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	385 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	386
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	387 if (sslerr == SSL_ERROR_WANT_READ) {
2 cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	388
cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	389 if (!SSL_is_init_finished(c->ssl->ssl)) {
10 46833bd150cb nginx 0.1.5 Igor Sysoev <http://sysoev.ru> parents: 4 diff changeset	390 handshake = " in SSL handshake";
2 cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	391
cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	392 } else {
cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	393 handshake = "";
cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	394 }
cc9f381affaa nginx 0.1.1 Igor Sysoev <http://sysoev.ru> parents: 0 diff changeset	395
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	396 ngx_log_error(NGX_LOG_ALERT, c->log, err,
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	397 "SSL wants to read%s", handshake);
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	398
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	399 c->read->ready = 0;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	400
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	401 if (ngx_handle_read_event(c->read, 0) == NGX_ERROR) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	402 return NGX_ERROR;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	403 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	404
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	405 /*
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	406 * we do not set the timer because there is already
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	407 * the write event timer
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	408 */
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	409
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	410 if (c->ssl->saved_read_handler == NULL) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	411 c->ssl->saved_read_handler = c->read->event_handler;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	412 c->read->event_handler = ngx_ssl_read_handler;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	413 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	414
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	415 return NGX_AGAIN;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	416 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	417
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	418 c->ssl->no_rcv_shut = 1;
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	419 c->ssl->no_send_shut = 1;
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	420
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	421 ngx_ssl_error(NGX_LOG_ALERT, c->log, err, "SSL_write() failed");
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	422
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	423 return NGX_ERROR;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	424 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	425
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	426
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	427 static void ngx_ssl_read_handler(ngx_event_t *rev)
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	428 {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	429 ngx_connection_t *c;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	430
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	431 c = rev->data;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	432 c->write->event_handler(c->write);
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	433 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	434
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	435
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	436 ngx_int_t ngx_ssl_shutdown(ngx_connection_t *c)
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	437 {
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	438 int n, sslerr, mode;
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	439 ngx_uint_t again;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	440
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	441 if (!c->ssl->shutdown_set) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	442
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	443 /* it seems that SSL_set_shutdown() could be called once only */
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	444
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	445 if (c->read->timedout) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	446 mode = SSL_RECEIVED_SHUTDOWN\|SSL_SENT_SHUTDOWN;
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	447
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	448 } else {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	449 mode = 0;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	450
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	451 if (c->ssl->no_rcv_shut) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	452 mode = SSL_RECEIVED_SHUTDOWN;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	453 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	454
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	455 if (c->ssl->no_send_shut) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	456 mode \|= SSL_SENT_SHUTDOWN;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	457 }
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	458 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	459
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	460 if (mode) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	461 SSL_set_shutdown(c->ssl->ssl, mode);
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	462 c->ssl->shutdown_set = 1;
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	463 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	464 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	465
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	466 again = 0;
10 46833bd150cb nginx 0.1.5 Igor Sysoev <http://sysoev.ru> parents: 4 diff changeset	467 #if (NGX_SUPPRESS_WARN)
46833bd150cb nginx 0.1.5 Igor Sysoev <http://sysoev.ru> parents: 4 diff changeset	468 sslerr = 0;
46833bd150cb nginx 0.1.5 Igor Sysoev <http://sysoev.ru> parents: 4 diff changeset	469 #endif
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	470
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	471 for ( ;; ) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	472 n = SSL_shutdown(c->ssl->ssl);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	473
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	474 ngx_log_debug1(NGX_LOG_DEBUG_EVENT, c->log, 0, "SSL_shutdown: %d", n);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	475
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	476 if (n == 1 \|\| (n == 0 && c->read->timedout)) {
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	477 SSL_free(c->ssl->ssl);
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	478 c->ssl = NULL;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	479 return NGX_OK;
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	480 }
8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	481
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	482 if (n == 0) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	483 again = 1;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	484 break;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	485 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	486
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	487 break;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	488 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	489
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	490 if (!again) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	491 sslerr = SSL_get_error(c->ssl->ssl, n);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	492
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	493 ngx_log_debug1(NGX_LOG_DEBUG_EVENT, c->log, 0,
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	494 "SSL_get_error: %d", sslerr);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	495 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	496
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	497 if (again \|\| sslerr == SSL_ERROR_WANT_READ) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	498
22 8b6db3bda591 nginx 0.1.11 Igor Sysoev <http://sysoev.ru> parents: 18 diff changeset	499 ngx_add_timer(c->read, 30000);
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	500
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	501 if (ngx_handle_read_event(c->read, 0) == NGX_ERROR) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	502 return NGX_ERROR;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	503 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	504
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	505 return NGX_AGAIN;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	506 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	507
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	508 if (sslerr == SSL_ERROR_WANT_WRITE) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	509
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	510 if (ngx_handle_write_event(c->write, 0) == NGX_ERROR) {
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	511 return NGX_ERROR;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	512 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	513
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	514 return NGX_AGAIN;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	515 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	516
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	517 ngx_ssl_error(NGX_LOG_ALERT, c->log, 0, "SSL_shutdown() failed");
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	518
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	519 return NGX_ERROR;
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	520 }
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	521
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	522
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	523 void ngx_ssl_error(ngx_uint_t level, ngx_log_t *log, ngx_err_t err,
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	524 char *fmt, ...)
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	525 {
10 46833bd150cb nginx 0.1.5 Igor Sysoev <http://sysoev.ru> parents: 4 diff changeset	526 u_char errstr[NGX_MAX_CONF_ERRSTR], p, last;
46833bd150cb nginx 0.1.5 Igor Sysoev <http://sysoev.ru> parents: 4 diff changeset	527 va_list args;
46833bd150cb nginx 0.1.5 Igor Sysoev <http://sysoev.ru> parents: 4 diff changeset	528
46833bd150cb nginx 0.1.5 Igor Sysoev <http://sysoev.ru> parents: 4 diff changeset	529 last = errstr + NGX_MAX_CONF_ERRSTR;
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	530
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	531 va_start(args, fmt);
10 46833bd150cb nginx 0.1.5 Igor Sysoev <http://sysoev.ru> parents: 4 diff changeset	532 p = ngx_vsnprintf(errstr, sizeof(errstr) - 1, fmt, args);
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	533 va_end(args);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	534
10 46833bd150cb nginx 0.1.5 Igor Sysoev <http://sysoev.ru> parents: 4 diff changeset	535 p = ngx_cpystrn(p, " (SSL: ", last - p);
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	536
10 46833bd150cb nginx 0.1.5 Igor Sysoev <http://sysoev.ru> parents: 4 diff changeset	537 ERR_error_string_n(ERR_get_error(), (char *) p, last - p);
0 f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	538
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	539 ngx_log_error(level, log, err, "%s)", errstr);
f0b350454894 nginx 0.1.0 Igor Sysoev <http://sysoev.ru> parents: diff changeset	540 }

Mercurial > hg > nginx-ranges

annotate src/event/ngx_event_openssl.c @ 34:aab2ea7c0458 NGINX_0_1_17