SSL_clear - Reset SSL object to allow another connection
#include <openssl/ssl.h>
int SSL_clear(
SSL *ssl );
Reset ssl to allow another connection. All settings
(method, ciphers, BIOs) are kept.
The SSL_clear() function is used to prepare an SSL object
for a new connection. While all settings are kept, a side
effect is the handling of the current SSL session. If a
session is still open, it is considered bad and will be
removed from the session cache, as required by RFC2246. A
session is considered open, if the SSL_shutdown() function
was not called for the connection or at least the
SSL_set_shutdown() function was used to set the
SSL_SENT_SHUTDOWN state.
If a session was closed cleanly, the session object will
be kept and all corresponding settings. This means that
the special method used during the session will be kept
for the next handshake. For example, if the session was a
TLSv1 session, an SSL client object will use a TLSv1
client method for the next handshake, and a SSL server
object will use a TLSv1 server method, regardles of
whether the SSLv23_*_methods were chosen onstartup. This
might lead to connection failures. (See SSL_new(3) for a
description of the method's properties.)
The SSL_clear() function resets the SSL object to allow
for another connection. The reset operation keeps several
settings of previous sessions. Some of these settings were
made automatically during the last handshake. The
SSL_clear()function is not a short form for the
SSL_free(), SSL_new() sequence .
The following return values can occur: The SSL_clear()
function operation could not be performed. Check the error
stack to find out the reason. The SSL_clear() function
operation was successful.
Functions: SSL_new(3), SSL_free(3), SSL_shutdown(3),
SSL_set_shutdown(3), SSL_CTX_set_options(3), ssl(3),
SSL_CTX_set_client_cert_cb(3)
SSL_clear(3)
[ Back ] |