Priscilla Hero <grace.priscilla@xxxxxxxxx> wrote:
> Hi Michael, Without doing ssl_accept on the ssl will getpeername work?
ssl_accept() processes the packets on the socket.
getpeername() on a (Unix) socket will always work.
However, getpeername() on a UDP socket won't produce anything unless the
socket was connect(2)'ed. In order to get the address of the remote system
one has to get it when receiving the packet.
That's why: https://github.com/mcr/openssl/commit/f764151782b4b32a752b4016336c0ceafa98ed5c
retrieves the peer name from the BIO.
> On 12-Jan-2018, at 6:45 PM, Michael Wojcik
> <Michael.Wojcik@xxxxxxxxxxxxxx> wrote:
>> Don't create the BIO immediately. Use getpeername on the socket
>> descriptor and check that against the list. Only create a new SSL
>> object and BIO if it's not an already-established client.
That only works with TCP.
--
] Never tell me the odds! | ipv6 mesh networks [
] Michael Richardson, Sandelman Software Works | network architect [
] mcr@xxxxxxxxxxxx http://www.sandelman.ca/ | ruby on rails [
Attachment:
signature.asc
Description: PGP signature
-- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
