SSL_clear(3)SSL_clear(3)NAMESSL_clear - Reset SSL object to allow another connection
SYNOPSIS
#include <openssl/ssl.h>
int SSL_clear(
SSL *ssl );
DESCRIPTION
Reset ssl to allow another connection. All settings (method, ciphers,
BIOs) are kept.
NOTES
The SSL_clear() function is used to prepare an SSL object for a new
connection. While all settings are kept, a side effect is the handling
of the current SSL session. If a session is still open, it is consid‐
ered bad and will be removed from the session cache, as required by
RFC2246. A session is considered open, if the SSL_shutdown() function
was not called for the connection or at least the SSL_set_shutdown()
function was used to set the SSL_SENT_SHUTDOWN state.
If a session was closed cleanly, the session object will be kept and
all corresponding settings. This means that the special method used
during the session will be kept for the next handshake. For example,
if the session was a TLSv1 session, an SSL client object will use a
TLSv1 client method for the next handshake, and a SSL server object
will use a TLSv1 server method, regardles of whether the SSLv23_*_meth‐
ods were chosen onstartup. This might lead to connection failures.
(See SSL_new(3) for a description of the method's properties.)
WARNINGS
The SSL_clear() function resets the SSL object to allow for another
connection. The reset operation keeps several settings of previous ses‐
sions. Some of these settings were made automatically during the last
handshake. The SSL_clear()function is not a short form for the
SSL_free(), SSL_new() sequence .
RETURN VALUES
The following return values can occur: The SSL_clear() function opera‐
tion could not be performed. Check the error stack to find out the rea‐
son. The SSL_clear() function operation was successful.
SEE ALSO
Functions: SSL_new(3), SSL_free(3), SSL_shutdown(3), SSL_set_shut‐
down(3), SSL_CTX_set_options(3), ssl(3), SSL_CTX_set_client_cert_cb(3)SSL_clear(3)
