generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Rewrite timeout computation in a way that is less prone to overflow.

Browse Source 
(Problem reported by Peter Sylvester.)
This commit is contained in:
Bodo Möller 2005-12-30 23:51:36 +00:00
parent 68b64fb610
commit 7476f3ac3b
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
ssl/ssl_sess.c
View File

@ -389,7 +389,7 @@ int ssl_get_prev_session(SSL *s, unsigned char *session_id, int len)
CRYPTO_add(&ret->references,1,CRYPTO_LOCK_SSL_SESSION); CRYPTO_add(&ret->references,1,CRYPTO_LOCK_SSL_SESSION);
#endif #endif
if ((long)(ret->time+ret->timeout) < (long)time(NULL)) /* timeout */ if (ret->timeout < (long)(time(NULL) - ret->time)) /* timeout */
{ {
s->ctx->stats.sess_timeout++; s->ctx->stats.sess_timeout++;
/* remove it from the cache */ /* remove it from the cache */