Hi All I have been using this API to dump in my statistics logs whether the SSL session is reused or not in a windows openSSL based client. Everything was good till i was using 9.7e. The session reuse works fine and the logs were correctly showing session reused as 1 and sniffer traces reconfirms that indeed my client reuses the SSL session..
But once I upgraded the Openssl libeay32.dll and ssleay32.dll to 9.8b the session is still getting reused as per sniffer traces (i checked the 32 byte session Id in client hello and server hello and they match). but the return value of SSL_session_reused API returns session reused as one. With same client code, once I revert back to old OpenSSL APIs, the session reused is indicated as 1 and thus good. Thus surely either I am using some old (obsolete) API that shouldn't be used or there is some issues introduced in between 9.7e and 9.8b. In case anyone else face same issue or know any other API that should be used or any other pointers please revert back.. Thanks in advance regards Krishna ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
