Serialize/Deserialize SSL state

Short, Todd tshort at
Fri Aug 9 20:01:37 UTC 2019

Not without a lot of work. It’s not part of the current API.

We have tried doing an internal implementation; it was over 1K of new code, and it wasn’t complete.
-Todd Short
// tshort at
// “One if by land, two if by sea, threeif by the Internet."

> On Aug 9, 2019, at 3:42 PM, Osama Mazahir via openssl-users <openssl-users at> wrote:
> Is there a way to serialize and deserialize the ssl_st state (i.e. including any child objects)?
> Background: I would like to handoff all the SSL state (along my own managed state, file descriptors, etc) to another Linux running process (I will handle the IPC handoff).  The connection already had its handshake completed, app data flow had already occurred (i.e. it is not a new or early’ish context).  So, trying to see if it is possible to serialize the openssl state, shove it through a unix domain socket to the target process and then have the target process unpack the openssl state and resume IO.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2991 bytes
Desc: not available
URL: <>

More information about the openssl-users mailing list