Don't check errors on ssl_close_notify()
Depending on timing we might get different errors (conn_reset, write failed)
and ignoring them all ends up being almost the same as just not checking
errors.
diff --git a/programs/ssl/ssl_server2.c b/programs/ssl/ssl_server2.c
index 2980cf5..9ecbdf1 100644
--- a/programs/ssl/ssl_server2.c
+++ b/programs/ssl/ssl_server2.c
@@ -1763,24 +1763,10 @@
close_notify:
printf( " . Closing the connection..." );
- while( ( ret = ssl_close_notify( &ssl ) ) < 0 )
- {
- if( ret == POLARSSL_ERR_NET_CONN_RESET )
- {
- printf( " ok (already closed by peer)\n" );
- ret = 0;
- goto reset;
- }
+ /* Don't check for errors, the connection might already be closed */
+ ssl_close_notify( &ssl );
- if( ret != POLARSSL_ERR_NET_WANT_READ &&
- ret != POLARSSL_ERR_NET_WANT_WRITE )
- {
- printf( " failed\n ! ssl_close_notify returned %d\n\n", ret );
- goto reset;
- }
- }
-
- printf( " ok\n" );
+ printf( " done\n" );
goto reset;
/*