On 2007.04.05 at 14:29:22 +0530, Urjit Gokhale wrote: > Hello all, > > As we all know, the SSL object can work either with direct tcp sockets > (SSL_set_fd()) or can work on top of socket BIO objects. > In my current project, I am using SSL directly on top of tcp sockets (no > BIOs). > I wonder whether I loose some functionality provided by BIO layer? > What are the advantages of using BIOs instead of tcp sockets? (As I > understand it, BIO can be though of as a wrapper on tcp). > What points should one take into account, while deciding whether to use > BIOs or direct tcp sockets?
Quote from the SSL_set_fd man page (0.9.8e) When performing the operation, a socket BIO is automatically created to interface between the ssl and fd. The BIO and hence the SSL engine inherit the behaviour of fd. If fd is non-blocking, the ssl will also have non-blocking behaviour. So you don't loose anything unless you want to do something very specific with BIO configuration before attaching this BIO to SSL objetct. You might also want to use some non-tcp BIO for SSL communication. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
