-
Notifications
You must be signed in to change notification settings - Fork 420
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Retry on WANT_WRITE
& WANT_READ
in sendall()
#954
base: main
Are you sure you want to change the base?
Retry on WANT_WRITE
& WANT_READ
in sendall()
#954
Conversation
c945229
to
873866a
Compare
Is there a way we can cover this with a test? And is |
It's set in the context initializer: https://github.com/pyca/pyopenssl/blob/124a013/src/OpenSSL/SSL.py#L660. Also, the docstring of
I'm not sure how to properly trigger this in a stable manner at the moment. Although, the suspicion is that maybe if we could limit the buffer size of the test socket and feed a sufficiently big chunk of data into it, it should work. Lines 2659 to 2690 in 124a013
|
I'm trying to come up with with a reproducer @ #955 but it still needs polishing. |
@@ -25,6 +25,10 @@ Deprecations: | |||
Changes: | |||
^^^^^^^^ | |||
|
|||
- Fixed the inability of ``OpenSSL.SSL.Connection.sendall()`` to | |||
keep with sending data over the wire after ``SSL_ERROR_WANT_READ`` |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
keep with sending data over the wire after ``SSL_ERROR_WANT_READ`` | |
keep sending data over the wire after ``SSL_ERROR_WANT_READ`` |
This change introduces retries in `OpenSSL.SSL.Connection.sendall()` when `WANT_WRITE_ERROR` or `WANT_READ_ERROR` happen. It relies on `SSL_MODE_ENABLE_PARTIAL_WRITE` being set on the context, that changes the mode of `SSL_write()` to return errors only if zero bytes has been sent making it safe to retry in these cases. Ideally, the calling code is supposed to `poll()`/`select()` the socket to know when it's okay to attempt the next retry (hence it is readable or writable) but it's not available in the `sendall()` method and just retrying the operation is good enough. Fixes pyca#176 Refs: * http://openssl.6102.n7.nabble.com/SSL-MODE-ACCEPT-MOVING-WRITE-BUFFER-td6421.html * https://stackoverflow.com/a/28992313/595220 * https://www.openssl.org/docs/manmaster/man3/SSL_write.html * https://stackoverflow.com/a/20817394/595220
873866a
to
9836c42
Compare
This change introduces retries in
OpenSSL.SSL.Connection.sendall()
when
WANT_WRITE_ERROR
orWANT_READ_ERROR
happen.It relies on
SSL_MODE_ENABLE_PARTIAL_WRITE
being set on the context,that changes the mode of
SSL_write()
to return errors only if zerobytes has been sent making it safe to retry in these cases.
Ideally, the calling code is supposed to
poll()
/select()
thesocket to know when it's okay to attempt the next retry (hence it is
readable or writable) but it's not available in the
sendall()
methodand just retrying the operation is good enough.
Fixes #176
Refs: