> Hmm. This brings up the question, what SSL_clear() should actually do. > I would consider SSL_clear() to be not much different from doing > SSL_free()/SSL_new(), but obiously it is. Unfortunately EAY did not leave > documentation about his intentions... > Does anybody have any more insights? Should we actually deprecate using > SSL_clear() as we don't know for sure what special side effects it has > and recommend using SSL_free()/SSL_new() instead??? > > Best regards, > Lutz > --
My impression has been that if you wanted to reuse a session object as a new object that you needed to perform SSL_clear(ssl); SSL_set_session(ssl,NULL); SSL_set_accept_state(ssl); I believe I got this code from some very old ssleay applications. However, this has not worked with OpenSSL since at least 0.9.5. Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 available now!!! The Kermit Project @ Columbia University includes Telnet, FTP and HTTP http://www.kermit-project.org/ secured with Kerberos, SRP, and [EMAIL PROTECTED] OpenSSL. Interfaces with OpenSSH ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
