On 29/10/2019 11:55, Nagalakshmi V J wrote: > Hi Matt, > > Thank you so much for your response. Those mentioned APIs resolved my > errors. > > For the below code, > > return SSL_get_session(pConnection) != NULL && > pConnection->session->session_id_length != 0; > > Any reference for accessing session_id_length? > https://www.openssl.org/docs/man1.1.0/man3/SSL_CTX_set_generate_session_id.html You should use SSL_SESSION_get_id() to get hold of the length: https://www.openssl.org/docs/man1.1.1/man3/SSL_SESSION_get_id.html Matt > > Not sure if I can use the above link. > > > /Thanks & Regards,/ > /Nagalakshmi V J/ > ------------------------------------------------------------------------ > *From:* Matt Caswell <matt@xxxxxxxxxxx> > *Sent:* 29 October 2019 10:47 > *To:* Nagalakshmi V J <nagalakshmi.j@xxxxxxxxxx>; > openssl-users@xxxxxxxxxxx <openssl-users@xxxxxxxxxxx> > *Subject:* Re: OpenSSL compilation errors in Windows > > ** This mail has been sent from an external source ** > > > On 29/10/2019 10:34, Nagalakshmi V J wrote: >> >> tls1_PRF(s->ctx->md5,s->ctx->sha1,buf,(int)(p-buf), >> >> pGenerator->master_secret,sizeof(pGenerator->master_secret), >> >> km,tmp,num); > > It seems your code is replicating parts of libssl - which seems like a > strange (and possibly dangerous) thing to do! > >> Struct ssl_ctx_st { >> >> … >> >> constEVP_MD *md5; /* For SSLv3/TLSv1 'ssl3-md5' */ >> >> constEVP_MD *sha1; /* For SSLv3/TLSv1 'ssl3->sha1' */ >> >> … >> >> } > > You really don't need to access these things. They're just cached > references to the value returned by EVP_get_digestbyname("ssl3-md5") and > EVP_get_digestbyname("ssl3-sha1"). So you can call those functions > directly anyway. > > Matt > > ===================================================== > Please refer to https://northamerica.altran.com/email-disclaimer > for important disclosures regarding this electronic communication. > =====================================================
