Hi All,
I am very new to SSL. And I just came to know modssl
uses openssl.My knowledge says ,for each
session the openssl by default sets the sizes of
init_buf(for holding handshake data),rbuf(for reading
data ),wbuf(for writing data) to 16k each.My concern
is that if 48k(3*16k) is used by a given connection
in the session, what happens if suppose 1000
simultanious connections are handled by the server.
I want to avoid this preallocation, and allocate(or
resize) the read and write buffers as and when my BIO
reads/writes. Can you pls let me know whether it is
possible ? If so can I use ssl3_setup_buffers(s)
function to set rbuf and wbuf of SSL.
In modssl code I observed one interesting area
(which is called as !SSL_CONSERVATIVE) in which some
number of bytes of input data is pre-sucked from
SSL/TLS I/O layer before being actually read, like:
ssl_io_suck(request_rec *r, SSL *ssl)
which does
ssl_io_suck_start(r);
ssl_io_suck_record(r, buf, len); /* which
manipulates the buffer sizes and expansion of the
buffer */
ssl_io_suck_end(r);
and then it calls ssl_io_suck_read()
But I think it is only been used in case of
renegotiation. Can I follow this approach to all
cases,atleaset when application data is exchanged. I
am not sure whether my problem directly maps to this
approach.
Pls kindly give any suggesions you have on this.
Thanks in advance,
Rahul
__________________________________________________
Do You Yahoo!?
Make international calls for as low as $.04/minute with Yahoo! Messenger
http://phonecard.yahoo.com/
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
