commit f1388748119262fa34fbf8e2f7d96248a8e036db
author Manuel Pégourié-Gonnard <mpg@elzevir.fr> Tue Aug 19 16:14:36 2014 +0200
committer Manuel Pégourié-Gonnard <mpg@elzevir.fr> Tue Aug 19 16:14:36 2014 +0200
tree 5b39808c9ec917a88ba7a6334fbceb1f55cc9be5
parent a13500fdf758ca5b0d9b372b489390fc917f0883

Properly send close_notify in ssl_client2

programs/ssl/ssl_client2.c

diff --git a/programs/ssl/ssl_client2.c b/programs/ssl/ssl_client2.c
index f235b4c..5b7a488 100644
--- a/programs/ssl/ssl_client2.c
+++ b/programs/ssl/ssl_client2.c
@@ -1130,7 +1130,7 @@
                 case POLARSSL_ERR_SSL_PEER_CLOSE_NOTIFY:
                     printf( " connection was closed gracefully\n" );
                     ret = 0;
-                    goto reconnect;
+                    goto close_notify;
 
                 case 0:
                 case POLARSSL_ERR_NET_CONN_RESET:
@@ -1165,7 +1165,32 @@
         goto send_request;
 
     /*
-     * 7c. Reconnect?
+     * 8. Done, cleanly close the connection
+     */
+close_notify:
+    printf( "  . Closing the connection..." );
+
+    while( ( ret = ssl_close_notify( &ssl ) ) < 0 )
+    {
+        if( ret == POLARSSL_ERR_NET_CONN_RESET )
+        {
+            printf( " ok (already closed by peer)\n" );
+            ret = 0;
+            goto reconnect;
+        }
+
+        if( ret != POLARSSL_ERR_NET_WANT_READ &&
+            ret != POLARSSL_ERR_NET_WANT_WRITE )
+        {
+            printf( " failed\n  ! ssl_close_notify returned %d\n\n", ret );
+            goto reconnect;
+        }
+    }
+
+    printf( " ok\n" );
+
+    /*
+     * 9. Reconnect?
      */
 reconnect:
     if( opt.reconnect != 0 )