Make SSL_read and SSL_write return the old behaviour and document it.

=item SSL_ERROR_ZERO_RETURN

The TLS/SSL connection has been closed.  If the protocol version is SSL 3.0

or TLS 1.0, this result code is returned only if a closure

alert has occurred in the protocol, i.e. if the connection has been

closed cleanly. Note that in this case B<SSL_ERROR_ZERO_RETURN>

does not necessarily indicate that the underlying transport

has been closed.

The TLS/SSL connection has been closed.

If the protocol version is SSL 3.0 or higher, this result code is returned only

if a closure alert has occurred in the protocol, i.e. if the connection has been

closed cleanly.

Note that in this case B<SSL_ERROR_ZERO_RETURN> does not necessarily

indicate that the underlying transport has been closed.

=item SSL_ERROR_WANT_READ, SSL_ERROR_WANT_WRITE

=item SSL_ERROR_SYSCALL

Some I/O error occurred.  The OpenSSL error queue may contain more

information on the error.  If the error queue is empty

(i.e. ERR_get_error() returns 0), B<ret> can be used to find out more

about the error: If B<ret == 0>, an EOF was observed that violates

the protocol.  If B<ret == -1>, the underlying B<BIO> reported an

I/O error (for socket I/O on Unix systems, consult B<errno> for details).

Some non-recoverable I/O error occurred.

The OpenSSL error queue may contain more information on the error.

For socket I/O on Unix systems, consult B<errno> for details.

=item SSL_ERROR_SSL

 #include <openssl/ssl.h>

 int SSL_read_ex(SSL *ssl, void *buf, size_t num, size_t *read);

 int SSL_read_ex(SSL *ssl, void *buf, size_t num, size_t *readbytes);

 int SSL_read(SSL *ssl, void *buf, int num);

 int SSL_peek_ex(SSL *ssl, void *buf, size_t num, size_t *read);

 int SSL_peek_ex(SSL *ssl, void *buf, size_t num, size_t *readbytes);

 int SSL_peek(SSL *ssl, void *buf, int num);

=head1 DESCRIPTION

SSL_read_ex() and SSL_read() try to read B<num> bytes from the specified B<ssl>

into the buffer B<buf>. On success SSL_read_ex() will store the number of bytes

actually read in B<*read>.

actually read in B<*readbytes>.

SSL_peek_ex() and SSL_peek() are identical to SSL_read_ex() and SSL_read()

respectively except no bytes are actually removed from the underlying BIO during

SSL_read_ex() and SSL_peek_ex() will return 1 for success or 0 for failure.

Success means that 1 or more application data bytes have been read from the SSL

connection. Failure means that no bytes could be read from the SSL connection.

connection.

Failure means that no bytes could be read from the SSL connection.

Failures can be retryable (e.g. we are waiting for more bytes to

be delivered by the network) or non-retryable (e.g. a fatal network error). In

the event of a failure call L<SSL_get_error(3)> to find out the reason which

be delivered by the network) or non-retryable (e.g. a fatal network error).

In the event of a failure call L<SSL_get_error(3)> to find out the reason which

indicates whether the call is retryable or not.

For SSL_read() and SSL_peek() the following return values can occur:

=item E<gt> 0

The read operation was successful; the return value is the number of

bytes actually read from the TLS/SSL connection.

The read operation was successful.

The return value is the number of bytes actually read from the TLS/SSL

connection.

=item Z<>0

=item Z<><= 0

The read operation was not successful. The reason may either be a clean

shutdown due to a "close notify" alert sent by the peer (in which case

the SSL_RECEIVED_SHUTDOWN flag in the ssl shutdown state is set

(see L<SSL_shutdown(3)>,

L<SSL_set_shutdown(3)>). It is also possible, that

the peer simply shut down the underlying transport and the shutdown is

incomplete. Call SSL_get_error() with the return value B<ret> to find out,

whether an error occurred or the connection was shut down cleanly

(SSL_ERROR_ZERO_RETURN).

The read operation was not successful, because either the connection was closed,

an error occurred or action must be taken by the calling process.

Call L<SSL_get_error(3)> with the return value B<ret> to find out the reason.

=item E<lt>0

The read operation was not successful, because either an error occurred

or action must be taken by the calling process. Call SSL_get_error() with the

return value B<ret> to find out the reason.

Old documentation indicated a difference between 0 and -1, and that -1 was

retryable.

You should instead call SSL_get_error() to find out if it's retryable.

=back

The write operation was successful, the return value is the number of

bytes actually written to the TLS/SSL connection.

=item Z<>0

=item Z<><= 0

The write operation was not successful. Probably the underlying connection

was closed. Call SSL_get_error() with the return value B<ret> to find out,

whether an error occurred or the connection was shut down cleanly

(SSL_ERROR_ZERO_RETURN).

The write operation was not successful, because either the connection was

closed, an error occurred or action must be taken by the calling process.

Call SSL_get_error() with the return value B<ret> to find out the reason.

=item E<lt>0

The write operation was not successful, because either an error occurred

or action must be taken by the calling process. Call SSL_get_error() with the

return value B<ret> to find out the reason.

Old documentation indicated a difference between 0 and -1, and that -1 was

retryable.

You should instead call SSL_get_error() to find out if it's retryable.

=back

__owur int SSL_accept(SSL *ssl);

__owur int SSL_connect(SSL *ssl);

__owur int SSL_read(SSL *ssl, void *buf, int num);

__owur int SSL_read_ex(SSL *ssl, void *buf, size_t num, size_t *read);

__owur int SSL_read_ex(SSL *ssl, void *buf, size_t num, size_t *readbytes);

__owur int SSL_peek(SSL *ssl, void *buf, int num);

__owur int SSL_peek_ex(SSL *ssl, void *buf, size_t num, size_t *read);

__owur int SSL_peek_ex(SSL *ssl, void *buf, size_t num, size_t *readbytes);

__owur int SSL_write(SSL *ssl, const void *buf, int num);

__owur int SSL_write_ex(SSL *s, const void *buf, size_t num, size_t *written);

long SSL_ctrl(SSL *ssl, int cmd, long larg, void *parg);

}

/*

 * Return values are as per SSL_read(), i.e.

 *  1 Success

 *  0 Failure (not retryable)

 * <0 Failure (may be retryable)

 * Return values are as per SSL_read()

 */

int ssl3_read_n(SSL *s, size_t n, size_t max, int extend, int clearold,

                size_t *readbytes)

            if (s->mode & SSL_MODE_RELEASE_BUFFERS && !SSL_IS_DTLS(s))

                if (len + left == 0)

                    ssl3_release_read_buffer(s);

            return -1;

            return ret;

        }

        left += bioread;

        /*

/* if s->s3->wbuf.left != 0, we need to call this

 *

 * Return values are as per SSL_read(), i.e.

 *  1 Success

 *  0 Failure (not retryable)

 * <0 Failure (may be retryable)

 * Return values are as per SSL_write()

 */

int ssl3_write_pending(SSL *s, int type, const unsigned char *buf, size_t len,

                       size_t *written)

                 */

                SSL3_BUFFER_set_left(&wb[currbuf], 0);

            }

            return -1;

            return (i);

        }

        SSL3_BUFFER_add_offset(&wb[currbuf], tmpwrit);

        SSL3_BUFFER_sub_left(&wb[currbuf], tmpwrit);