Question
Mohammad Zolfaghari
mohammad.zolfaghari at actian.com
Wed Aug 9 12:39:03 UTC 2023
We are going to use openssl library in our product. A Client/Server communication that should be encrypted with openssl but there are two processes on the server side. Having done the first process, the socket handle will be handed over to the second process and it is needed for both processes to communicate encrypted. So, we have the following questions and would be appreciated if you answer:
1. It seems that ssl object is not assumed to be shared among processes by IPC mechanisms. Is there a way for doing so?
2. If not, is it possible to start two ssl channels on the same underlying socket, one for each process to work on?
3. Is it possible to export the agreed key (symmetric key) from one ssl object and import it into another ssl object (on different process) to avoid re-establishing the key agreement phase multiple times?
Best regards | Viele Grüße
[cid:a5b6e068-a973-42a3-b7a3-e0eab72a72cc]
Mohammad Zolfaghari
Software Engineer
Actian, A Division of HCLSoftware
M +49 162 27 88 158
www.<https://www.actian.com/>actian.com<https://www.actian.com/>
[cid:ff063891-661b-4b66-99c0-d7cacd74eb8c]<https://www.hcltechsw.com/data-analytics-insights>
GESELLSCHAFTSANGABEN: Actian Germany GmbH | Sitz der Gesellschaft: Halenreie 42, 22359 Hamburg | Geschäftsführung: Stephen Padgett, Marc Monahan | Handelsregister: Amtsgericht Hamburg | HRB 135991 | USt-IdNr: DE252449897
CONFIDENTIAL: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error, please notify the system manager. This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. If you are not the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mta.openssl.org/pipermail/openssl-users/attachments/20230809/72001b81/attachment-0001.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Outlook-nlqdmhkm.png
Type: image/png
Size: 6149 bytes
Desc: Outlook-nlqdmhkm.png
URL: <https://mta.openssl.org/pipermail/openssl-users/attachments/20230809/72001b81/attachment-0002.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Outlook-synbku5o.png
Type: image/png
Size: 70639 bytes
Desc: Outlook-synbku5o.png
URL: <https://mta.openssl.org/pipermail/openssl-users/attachments/20230809/72001b81/attachment-0003.png>
More information about the openssl-users
mailing list