Serialize/Deserialize SSL state

Felipe Gasper felipe at
Fri Aug 9 21:21:34 UTC 2019

> On Aug 9, 2019, at 3:42 PM, Osama Mazahir via openssl-users <openssl-users at> wrote:
> Is there a way to serialize and deserialize the ssl_st state (i.e. including any child objects)?
> Background: I would like to handoff all the SSL state (along my own managed state, file descriptors, etc) to another Linux running process (I will handle the IPC handoff).  The connection already had its handshake completed, app data flow had already occurred (i.e. it is not a new or early’ish context).  So, trying to see if it is possible to serialize the openssl state, shove it through a unix domain socket to the target process and then have the target process unpack the openssl state and resume IO.

For what it’s worth, I have also wished for something like this, where I could pass a file descriptor as well as the OpenSSL state over a socket to a separate process.

-Felipe Gasper
Mississauga, Ontario

More information about the openssl-users mailing list