Question

[Mohammad Zolfaghari <mohammad.zolfaghari@xxxxxxxxxx>]

We are going to use openssl library in our product. A Client/Server communication that should be encrypted with openssl but there are two processes on the server side. Having done the first process, the socket handle will be handed over to the second process and it is needed for both processes to communicate encrypted. So, we have the following questions and would be appreciated if you answer:

1. It seems that ssl object is not assumed to be shared among processes by IPC mechanisms. Is there a way for doing so?
2. If not, is it possible to start two ssl channels on the same underlying socket, one for each process to work on?
3. Is it possible to export the agreed key (symmetric key) from one ssl object and import it into another ssl object (on different process) to avoid re-establishing the key agreement phase multiple times?
   

Best regards | Viele Grüße

 

Mohammad Zolfaghari Software Engineer Actian, A Division of HCLSoftware M +49 162 27 88 158 www.actian.com

GESELLSCHAFTSANGABEN: Actian Germany GmbH | Sitz der Gesellschaft: Halenreie 42, 22359 Hamburg | Geschäftsführung: Stephen Padgett, Marc Monahan | Handelsregister: Amtsgericht Hamburg | HRB 135991 | USt-IdNr: DE252449897

CONFIDENTIAL: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error, please notify the system manager. This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. If you are not the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited.