[openssl-users] Backup of existing ssl connection

Short, Todd tshort at akamai.com
Tue Aug 28 19:27:37 UTC 2018

Agreed, Iooked at this when creating a failover service, and trying to replicate all the TCP and TLS data ended up using significant CPU processing and network bandwidth that it wasn’t worth it; in addition to intrusive OpenSSL changes.

You should try to have a way to detect and re-establish a failed connection; it’s significantly easier to do, and requires no modification of the OpenSSL code. Alternatively, having two simultaneous connections might work out.
-Todd Short
// tshort at akamai.com<mailto:tshort at akamai.com>
// "One if by land, two if by sea, three if by the Internet."

On Aug 23, 2018, at 8:36 AM, Salz, Rich via openssl-users <openssl-users at openssl.org<mailto:openssl-users at openssl.org>> wrote:

>I want to take backup of existing ssl connection. Use this backup connection in other slave board. This  backup include keys and sequence no, ssl version etc.
>Is Openssl support any api to take backup of existing ssl connection?

No.  This is not currently possible, and is unlikely to ever happen in OpenSSL.  It’s too hard.
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20180828/54ffbc4e/attachment.html>

More information about the openssl-users mailing list