Sharing a SSL connection between processes
Hi, and sorry if this is a repost. My question, in short: Is there a way to serialize the contents of the SSL_CTX and SSL structs to a bio? Some more details: I'm trying to figure out a way to use SSL between the client and server of my application. The problem is that there are several different clients that may run simultaneously on the same machine, and the server is unaware of that... The clients can communicate with one another using shared memory and an event. Currently, I use this means of communication in order to share the session's security parameters (such as a session key, message sequence number etc.), and to avoid 2 requests being sent simultaneously to the server. If I change the protocol to SSL, each client must have an updated SSL struct in order to be able to communicate with the server. So I'm looking for a way to (1) make OpenSSL allocate the SSL struct in the shared memory or (2) dump the SSL struct (not a pointer to it) to the shared memory after a communication, and load it from the shared memory before a communication. I don't want to let each client use its own SSL connection (too much work on the server side). Answers, or new ideas are very welcome. Tal __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Sharing a SSL connection between processes
From: Tal Mozes [EMAIL PROTECTED] talm My question, in short: Is there a way to serialize the contents of the talm SSL_CTX and SSL structs to a bio? Not really, at least in the sense that you want. The thought came to me that it almost seems like you'd want some kind of datagram protocol over SSL, so an idea could be to have a multiplexing program on the client machine. This programs would take whatever requests from your clients, over TCP or UDP (whichever you want) and multiplex those requests into a single SSL stream to the server. The problem is of course to figure out which response goes to which client, but that's a problem you have to solve in any case, and it's possible you already have... talm Some more details: I'm trying to figure out a way to use SSL talm between the client and server of my application. The problem is talm that there are several different clients that may run talm simultaneously on the same machine, and the server is unaware of talm that... talm talm The clients can communicate with one another using shared memory talm and an event. Currently, I use this means of communication in talm order to share the session's security parameters (such as a talm session key, message sequence number etc.), and to avoid 2 talm requests being sent simultaneously to the server. If I change talm the protocol to SSL, each client must have an updated SSL struct talm in order to be able to communicate with the server. So I'm talm looking for a way to (1) make OpenSSL allocate the SSL struct in talm the shared memory or (2) dump the SSL struct (not a pointer to talm it) to the shared memory after a communication, and load it from talm the shared memory before a communication. talm talm I don't want to let each client use its own SSL connection (too talm much work on the server side). talm talm Answers, or new ideas are very welcome. -- Richard Levitte \ Spannvägen 38, II \ [EMAIL PROTECTED] Redakteur@Stacken \ S-168 35 BROMMA \ T: +46-8-26 52 47 \ SWEDEN \ or +46-733-72 88 11 Procurator Odiosus Ex Infernis-- [EMAIL PROTECTED] Member of the OpenSSL development team: http://www.openssl.org/ Software Engineer, GemPlus: http://www.gemplus.com/ Unsolicited commercial email is subject to an archival fee of $400. See http://www.stacken.kth.se/~levitte/mail/ for more info. __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Sharing a SSL connection between processes
Hi, and sorry for the previous empty message. My question, in short: Is there a way to serialize the contents of the SSL_CTX and SSL structs to a bio? Some more details: I'm trying to figure out a way to use SSL between the client and server of my application. The problem is that there are several different clients that may run simultaneously on the same machine, and the server is unaware of that... The clients can communicate with one another using shared memory and an event. Currently, I use this means of communication in order to share the session's security parameters (such as a session key, message sequence number etc.), and to avoid 2 requests being sent simultaneously to the server. If I change the protocol to SSL, each client must have an updated SSL struct in order to be able to communicate with the server. So I'm looking for a way to (1) make OpenSSL allocate the SSL struct in the shared memory or (2) dump the SSL struct (not a pointer to it) to the shared memory after a communication, and load it from the shared memory before a communication. I don't want to let each client use its own SSL connection (too much work on the server side). Answers, or new ideas are very welcome. Tal __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
