2022-11-15 02:13:35 +08:00
|
|
|
=pod
|
|
|
|
|
|
|
|
=head1 NAME
|
|
|
|
|
2023-05-04 02:00:03 +08:00
|
|
|
SSL_handle_events - advance asynchronous state machine and perform network I/O
|
2022-11-15 02:13:35 +08:00
|
|
|
|
|
|
|
=head1 SYNOPSIS
|
|
|
|
|
|
|
|
#include <openssl/ssl.h>
|
|
|
|
|
2023-05-04 02:00:03 +08:00
|
|
|
int SSL_handle_events(SSL *ssl);
|
2022-11-15 02:13:35 +08:00
|
|
|
|
|
|
|
=head1 DESCRIPTION
|
|
|
|
|
2023-05-04 02:00:03 +08:00
|
|
|
SSL_handle_events() performs any internal processing which is due on a SSL object. The
|
|
|
|
exact operations performed by SSL_handle_events() vary depending on what kind of protocol
|
|
|
|
is being used with the given SSL object. For example, SSL_handle_events() may handle
|
2022-11-15 02:13:35 +08:00
|
|
|
timeout events which have become due, or may attempt, to the extent currently
|
|
|
|
possible, to perform network I/O operations on one of the BIOs underlying the
|
|
|
|
SSL object.
|
|
|
|
|
2023-05-04 02:00:03 +08:00
|
|
|
The primary use case for SSL_handle_events() is to allow an application which uses
|
2022-11-15 02:13:35 +08:00
|
|
|
OpenSSL in nonblocking mode to give OpenSSL an opportunity to handle timer
|
|
|
|
events, or to respond to the availability of new data to be read from an
|
|
|
|
underlying BIO, or to respond to the opportunity to write pending data to an
|
|
|
|
underlying BIO.
|
|
|
|
|
2023-05-04 02:00:03 +08:00
|
|
|
SSL_handle_events() can be used only with the following types of SSL object:
|
2022-11-15 02:13:35 +08:00
|
|
|
|
|
|
|
=over 4
|
|
|
|
|
|
|
|
=item DTLS SSL objects
|
|
|
|
|
2023-05-04 02:00:03 +08:00
|
|
|
Using SSL_handle_events() on an SSL object being used with a DTLS method allows timeout
|
2022-11-15 02:13:35 +08:00
|
|
|
events to be handled properly. This is equivalent to a call to
|
2023-05-04 02:00:03 +08:00
|
|
|
L<DTLSv1_handle_timeout(3)>. Since SSL_handle_events() handles a superset of the use
|
2023-01-09 19:18:06 +08:00
|
|
|
cases of L<DTLSv1_handle_timeout(3)>, it should be preferred for new
|
|
|
|
applications which do not require support for OpenSSL 3.1 or older.
|
2022-11-15 02:13:35 +08:00
|
|
|
|
2023-05-04 02:00:03 +08:00
|
|
|
When using DTLS, an application must call SSL_handle_events() as indicated by
|
2023-05-24 23:06:22 +08:00
|
|
|
calls to L<SSL_get_event_timeout(3)>; event handling is not performed
|
|
|
|
automatically by calls to other SSL functions such as L<SSL_read(3)> or
|
|
|
|
L<SSL_write(3)>. Note that this is different to QUIC which also performs event
|
|
|
|
handling implicitly; see below.
|
2022-11-30 16:04:34 +08:00
|
|
|
|
2022-11-15 02:13:35 +08:00
|
|
|
=item QUIC connection SSL objects
|
|
|
|
|
2023-05-04 02:00:03 +08:00
|
|
|
Using SSL_handle_events() on an SSL object which represents a QUIC connection allows
|
2022-11-15 02:13:35 +08:00
|
|
|
timeout events to be handled properly, as well as incoming network data to be
|
|
|
|
processed, and queued outgoing network data to be written, if the underlying BIO
|
|
|
|
has the capacity to accept it.
|
|
|
|
|
|
|
|
Ordinarily, when an application uses an SSL object in blocking mode, it does not
|
2023-05-04 02:00:03 +08:00
|
|
|
need to call SSL_handle_events() because OpenSSL performs ticking internally on an
|
2022-11-15 02:13:35 +08:00
|
|
|
automatic basis. However, if an application uses a QUIC connection in
|
2023-05-04 02:00:03 +08:00
|
|
|
nonblocking mode, it must at a minimum ensure that SSL_handle_events() is called
|
2022-11-30 16:04:34 +08:00
|
|
|
periodically to allow timeout events to be handled. An application can find out
|
2023-05-04 02:00:03 +08:00
|
|
|
when it next needs to call SSL_handle_events() for this purpose (if at all) by calling
|
|
|
|
L<SSL_get_event_timeout(3)>.
|
2022-11-15 02:13:35 +08:00
|
|
|
|
2023-05-04 02:00:03 +08:00
|
|
|
Calling SSL_handle_events() on a QUIC connection SSL object being used in blocking mode
|
2023-01-09 19:18:06 +08:00
|
|
|
is not necessary unless no I/O calls (such as L<SSL_read(3)> or L<SSL_write(3)>)
|
|
|
|
will be made to the object for a substantial period of time. So long as at least
|
|
|
|
one call to the SSL object is blocking, no such call is needed. However,
|
2023-05-04 02:00:03 +08:00
|
|
|
SSL_handle_events() may optionally be used on a QUIC connection object if desired.
|
2022-11-15 02:13:35 +08:00
|
|
|
|
|
|
|
=begin comment
|
|
|
|
|
|
|
|
TODO(QUIC): Update the above paragraph once we support thread assisted mode.
|
|
|
|
|
|
|
|
=end comment
|
|
|
|
|
|
|
|
=back
|
|
|
|
|
2023-05-04 02:00:03 +08:00
|
|
|
Calling SSL_handle_events() on any other kind of SSL object is a no-op. This is
|
2022-11-30 16:04:34 +08:00
|
|
|
considered a success case.
|
|
|
|
|
2023-05-04 02:00:03 +08:00
|
|
|
Note that SSL_handle_events() supersedes the older L<DTLSv1_handle_timeout(3)> function
|
2023-01-09 19:18:06 +08:00
|
|
|
for all use cases.
|
|
|
|
|
2022-11-15 02:13:35 +08:00
|
|
|
=head1 RETURN VALUES
|
|
|
|
|
|
|
|
Returns 1 on success and 0 on failure.
|
|
|
|
|
|
|
|
=head1 SEE ALSO
|
|
|
|
|
2023-05-04 02:00:03 +08:00
|
|
|
L<SSL_get_event_timeout(3)>, L<DTLSv1_handle_timeout(3)>, L<ssl(7)>
|
2022-11-15 02:13:35 +08:00
|
|
|
|
|
|
|
=head1 HISTORY
|
|
|
|
|
2023-05-04 02:00:03 +08:00
|
|
|
The SSL_handle_events() function was added in OpenSSL 3.2.
|
2022-11-15 02:13:35 +08:00
|
|
|
|
|
|
|
=head1 COPYRIGHT
|
|
|
|
|
2023-01-09 19:18:06 +08:00
|
|
|
Copyright 2023 The OpenSSL Project Authors. All Rights Reserved.
|
2022-11-15 02:13:35 +08:00
|
|
|
|
|
|
|
Licensed under the Apache License 2.0 (the "License"). You may not use
|
|
|
|
this file except in compliance with the License. You can obtain a copy
|
|
|
|
in the file LICENSE in the source distribution or at
|
|
|
|
L<https://www.openssl.org/source/license.html>.
|
|
|
|
|
|
|
|
=cut
|