Domovská stránka Prehľadávať Pomoc
Prihlásiť sa
OWEALs
/
openssl
zrkadlo git://git.openssl.org/openssl.git
2
0
Fork 0
Súbory Issues 1 Wiki
Strom: a28d06f3e9
Branche Tagy
openssl
/
doc
/
man3
/
SSL_clear.pod

SSL_clear.pod 2.5 KB
História Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384 
  1. =pod
    2. 

  2. 

  3. =head1 NAME
    4. 

  4. 

  5. SSL_clear - reset SSL object to allow another connection
    6. 

  6. 

  7. =head1 SYNOPSIS
    8. 

  8. 

  9.  #include <openssl/ssl.h>
    10. 

  10. 

  11.  int SSL_clear(SSL *ssl);
    12. 

  12. 

  13. =head1 DESCRIPTION
    14. 

  14. 

  15. Reset B<ssl> to allow another connection. All settings (method, ciphers,
    16. 

  16. BIOs) are kept.
    17. 

  17. 

  18. =head1 NOTES
    19. 

  19. 

  20. SSL_clear is used to prepare an SSL object for a new connection. While all
    21. 

  21. settings are kept, a side effect is the handling of the current SSL session.
    22. 

  22. If a session is still B<open>, it is considered bad and will be removed
    23. 

  23. from the session cache, as required by RFC2246. A session is considered open,
    24. 

  24. if L<SSL_shutdown(3)> was not called for the connection
    25. 

  25. or at least L<SSL_set_shutdown(3)> was used to
    26. 

  26. set the SSL_SENT_SHUTDOWN state.
    27. 

  27. 

  28. If a session was closed cleanly, the session object will be kept and all
    29. 

  29. settings corresponding. This explicitly means, that e.g. the special method
    30. 

  30. used during the session will be kept for the next handshake. So if the
    31. 

  31. session was a TLSv1 session, a SSL client object will use a TLSv1 client
    32. 

  32. method for the next handshake and a SSL server object will use a TLSv1
    33. 

  33. server method, even if TLS_*_methods were chosen on startup. This
    34. 

  34. will might lead to connection failures (see L<SSL_new(3)>)
    35. 

  35. for a description of the method's properties.
    36. 

  36. 

  37. =head1 WARNINGS
    38. 

  38. 

  39. SSL_clear() resets the SSL object to allow for another connection. The
    40. 

  40. reset operation however keeps several settings of the last sessions
    41. 

  41. (some of these settings were made automatically during the last
    42. 

  42. handshake). It only makes sense for a new connection with the exact
    43. 

  43. same peer that shares these settings, and may fail if that peer
    44. 

  44. changes its settings between connections. Use the sequence
    45. 

  45. L<SSL_get_session(3)>;
    46. 

  46. L<SSL_new(3)>;
    47. 

  47. L<SSL_set_session(3)>;
    48. 

  48. L<SSL_free(3)>
    49. 

  49. instead to avoid such failures
    50. 

  50. (or simply L<SSL_free(3)>; L<SSL_new(3)>
    51. 

  51. if session reuse is not desired).
    52. 

  52. 

  53. =head1 RETURN VALUES
    54. 

  54. 

  55. The following return values can occur:
    56. 

  56. 

  57. =over 4
    58. 

  58. 

  59. =item Z<>0
    60. 

  60. 

  61. The SSL_clear() operation could not be performed. Check the error stack to
    62. 

  62. find out the reason.
    63. 

  63. 

  64. =item Z<>1
    65. 

  65. 

  66. The SSL_clear() operation was successful.
    67. 

  67. 

  68. =back
    69. 

  69. 

  70. L<SSL_new(3)>, L<SSL_free(3)>,
    71. 

  71. L<SSL_shutdown(3)>, L<SSL_set_shutdown(3)>,
    72. 

  72. L<SSL_CTX_set_options(3)>, L<ssl(7)>,
    73. 

  73. L<SSL_CTX_set_client_cert_cb(3)>
    74. 

  74. 

  75. =head1 COPYRIGHT
    76. 

  76. 

  77. Copyright 2000-2016 The OpenSSL Project Authors. All Rights Reserved.
    78. 

  78. 

  79. Licensed under the Apache License 2.0 (the "License").  You may not use
    80. 

  80. this file except in compliance with the License.  You can obtain a copy
    81. 

  81. in the file LICENSE in the source distribution or at
    82. 

  82. L<https://www.openssl.org/source/license.html>.
    83. 

  83. 

  84. =cut
    85.