Serialize/Deserialize SSL state
Short, Todd
tshort at akamai.com
Fri Aug 9 20:01:37 UTC 2019
Not without a lot of work. It’s not part of the current API.
We have tried doing an internal implementation; it was over 1K of new code, and it wasn’t complete.
--
-Todd Short
// tshort at akamai.com
// “One if by land, two if by sea, threeif by the Internet."
> On Aug 9, 2019, at 3:42 PM, Osama Mazahir via openssl-users <openssl-users at openssl.org> wrote:
>
> Is there a way to serialize and deserialize the ssl_st state (i.e. including any child objects)?
>
> Background: I would like to handoff all the SSL state (along my own managed state, file descriptors, etc) to another Linux running process (I will handle the IPC handoff). The connection already had its handshake completed, app data flow had already occurred (i.e. it is not a new or early’ish context). So, trying to see if it is possible to serialize the openssl state, shove it through a unix domain socket to the target process and then have the target process unpack the openssl state and resume IO.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20190809/162a59f5/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2991 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20190809/162a59f5/attachment-0001.bin>
More information about the openssl-users
mailing list