[openssl-users] Fwd: Information to detach a BIO from fd
Michael Wojcik
Michael.Wojcik at microfocus.com
Fri Jan 12 13:15:18 UTC 2018
> From: openssl-users [mailto:openssl-users-bounces at openssl.org] On Behalf Of Grace Priscilla Jero
> Sent: Friday, January 12, 2018 07:04
> Whenever a connect is initiated from any client we need to know if it is already connected client or a new client.
> We are doing this by
> • creating bio/ssl each time a polling happens on the server fd
> • fetching the peer using BIO_dgram_get_peer after ssl_accept
> • Comparing it to the internally maintained list of peer
Don't create the BIO immediately. Use getpeername on the socket descriptor and check that against the list. Only create a new SSL object and BIO if it's not an already-established client.
--
Michael Wojcik
Distinguished Engineer, Micro Focus
More information about the openssl-users
mailing list