基于epoll的非阻塞ssl_read()卡在循环中

时间:2014-05-07 12:38:23

标签: c sockets ssl openssl epoll

我使用以下代码作为指南并修改了以下代码。 http://bendecplusplus.googlecode.com/svn/trunk/ssl_mycode/epoll_ssl/server.c http://bendecplusplus.googlecode.com/svn/trunk/ssl_mycode/epoll_ssl/client.c

我修改了服务器端代码,如下所示:

do {
count = SSL_read (ssl,  buf, sizeof(buf)); // get request
switch (SSL_get_error (ssl, count) ) {
    case SSL_ERROR_NONE: 
            buf[count] = 0;
            printf("Client msg: \"%s\"\n", buf);
            sprintf(reply, HTMLecho, buf);   // construct reply
            SSL_write(ssl, reply, strlen(reply)); // send reply
            break;
    case SSL_ERROR_WANT_READ:
    case SSL_ERROR_WANT_WRITE:
            continue;
    case SSL_ERROR_ZERO_RETURN:         
            ERR_print_errors_fp(stderr);
            printf("Performing exchange Error 2.\n");
            done = 1;
            break;
    default:
            ERR_print_errors_fp(stderr);
            printf("Performing exchange Error 3.\n");
            done = 1;
            break;
  }
} while ( ssl && count > 0 );  // SSL_pending(ssl) seems unreliable

在客户端,我的代码如下:

SSL_library_init();
ctx = InitCTX();
LoadCertificates(ctx, CertFile, KeyFile);
server = OpenConnection(hostname, atoi(portnum));
ssl = SSL_new(ctx); /* create new SSL connection state */
SSL_set_fd(ssl, server); /* attach the socket descriptor */
    if ( SSL_connect(ssl) == FAIL ) /* perform the connection */
    {
        ERR_print_errors_fp(stderr);
    } else {
    while(1){
        char *msg = "Hello??? are you there. lolololololololoooooooooooooooooooooooooooo";
        printf("Connected with %s encryption\n", SSL_get_cipher(ssl));
        ShowCerts(ssl); /* get any certs */
        SSL_write(ssl, msg, strlen(msg)); /* encrypt & send message */
        bytes = SSL_read(ssl, buf, sizeof(buf)); /* get reply & decrypt */
        buf[bytes] = 0;
        printf("Received: \"%s\"\n", buf);
        sleep(1);
        }
        SSL_free(ssl); /* release connection state */
    }
close(server); /* close socket */
SSL_CTX_free(ctx); /* release context */

我观察到卡在服务器端的循环中。任何指导都表示赞赏。

2 个答案:

答案 0 :(得分:2)

你的循环很明显。如果没有要阅读的内容,SSL_read将返回零,错误代码为SSL_ERROR_WANT_READ,则您执行continue,然后返回ssl_read

答案 1 :(得分:0)

以下为我编写代码。

                count = SSL_read(ssl, buf, sizeof(buf)); // get request
                int32_t ssl_error = SSL_get_error (ssl, count);
                switch (ssl_error) {
                case SSL_ERROR_NONE: 
                            printf("SSL_ERROR_NONE\n");
                            break;
                case SSL_ERROR_WANT_READ:
                            printf("SSL_ERROR_WANT_READ\n");
                            break;
                case SSL_ERROR_WANT_WRITE:
                            printf("SSL_ERROR_WANT_WRITE\n");
                            break;
                case SSL_ERROR_ZERO_RETURN:
                            printf("SSL_ERROR_ZERO_RETURN\n");  
                            break;
                default:
                            break;
                 }

                if (( count > 0 ) && (ssl_error == SSL_ERROR_NONE))
                {
                    buf[count] = 0;
                    printf("count > 0 Client msg: \"%s\"\n", buf);
                    sprintf(reply, HTMLecho, buf);   // construct reply
                    SSL_write(ssl, reply, strlen(reply)); // send reply
                } else if ((count < 0)  && (ssl_error == SSL_ERROR_WANT_READ)){
                    printf("count < 0 \n");
                    if (errno != EAGAIN)
                    {
                        printf("count < 0 errno != EAGAIN \n");
                        perror ("read");
                        done = 1;
                    }
                    break;
                } else if (count==0){
                    ERR_print_errors_fp(stderr);
                    printf("count == 0 Client Disconnected.\n");
                    done = 1;
                    break;
                }
相关问题
最新问题