From 03a2828fcf4ca301ef805a90e743d4fb974de2be Mon Sep 17 00:00:00 2001 From: Tatsuhiro Tsujikawa Date: Wed, 5 Nov 2014 01:15:38 +0900 Subject: [PATCH] src: Disable SSL_MODE_ENABLE_PARTIAL_WRITE for apps which use libevent --- src/HttpServer.cc | 1 - src/nghttp.cc | 1 - src/shrpx_ssl.cc | 2 -- 3 files changed, 4 deletions(-) diff --git a/src/HttpServer.cc b/src/HttpServer.cc index 99119227..6b0a6a80 100644 --- a/src/HttpServer.cc +++ b/src/HttpServer.cc @@ -1559,7 +1559,6 @@ int HttpServer::run() SSL_OP_CIPHER_SERVER_PREFERENCE); SSL_CTX_set_mode(ssl_ctx, SSL_MODE_AUTO_RETRY); SSL_CTX_set_mode(ssl_ctx, SSL_MODE_RELEASE_BUFFERS); - SSL_CTX_set_mode(ssl_ctx, SSL_MODE_ENABLE_PARTIAL_WRITE); SSL_CTX_set_cipher_list(ssl_ctx, ssl::DEFAULT_CIPHER_LIST); diff --git a/src/nghttp.cc b/src/nghttp.cc index 734a27c9..3a14cab7 100644 --- a/src/nghttp.cc +++ b/src/nghttp.cc @@ -1715,7 +1715,6 @@ int communicate(const std::string& scheme, const std::string& host, SSL_OP_ALL | SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3 | SSL_OP_NO_COMPRESSION | SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION); - SSL_CTX_set_mode(ssl_ctx, SSL_MODE_ENABLE_PARTIAL_WRITE); SSL_CTX_set_mode(ssl_ctx, SSL_MODE_AUTO_RETRY); SSL_CTX_set_mode(ssl_ctx, SSL_MODE_RELEASE_BUFFERS); if(!config.keyfile.empty()) { diff --git a/src/shrpx_ssl.cc b/src/shrpx_ssl.cc index bd0ffcc6..f558a9c7 100644 --- a/src/shrpx_ssl.cc +++ b/src/shrpx_ssl.cc @@ -298,7 +298,6 @@ SSL_CTX* create_ssl_context(const char *private_key_file, BIO_free(bio); } - SSL_CTX_set_mode(ssl_ctx, SSL_MODE_ENABLE_PARTIAL_WRITE); SSL_CTX_set_mode(ssl_ctx, SSL_MODE_AUTO_RETRY); SSL_CTX_set_mode(ssl_ctx, SSL_MODE_RELEASE_BUFFERS); if (get_config()->private_key_passwd) { @@ -402,7 +401,6 @@ SSL_CTX* create_ssl_client_context() DIE(); } - SSL_CTX_set_mode(ssl_ctx, SSL_MODE_ENABLE_PARTIAL_WRITE); SSL_CTX_set_mode(ssl_ctx, SSL_MODE_AUTO_RETRY); SSL_CTX_set_mode(ssl_ctx, SSL_MODE_RELEASE_BUFFERS);