From 5e4641a147c3e450a56b199b9066f1af75c2f779 Mon Sep 17 00:00:00 2001 From: Ben Pfaff Date: Thu, 7 Jan 2010 13:57:53 -0800 Subject: [PATCH] stream-ssl: Try to shut SSL connections down gracefully. It's nice to shut down SSL connections gracefully when we can. --- lib/stream-ssl.c | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/lib/stream-ssl.c b/lib/stream-ssl.c index 11bbf4ad..436dc7b2 100644 --- a/lib/stream-ssl.c +++ b/lib/stream-ssl.c @@ -437,6 +437,14 @@ ssl_close(struct stream *stream) { struct ssl_stream *sslv = ssl_stream_cast(stream); ssl_clear_txbuf(sslv); + + /* Attempt clean shutdown of the SSL connection. This will work most of + * the time, as long as the kernel send buffer has some free space and the + * SSL connection isn't renegotiating, etc. That has to be good enough, + * since we don't have any way to continue the close operation in the + * background. */ + SSL_shutdown(sslv->ssl); + SSL_free(sslv->ssl); close(sslv->fd); free(sslv); -- 2.30.2