generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

RT468: SSL_CTX_sess_set_cache_size wrong

Browse Source 
The documentation is wrong about what happens when the
session cache fills up.

Reviewed-by: Tim Hudson <tjh@openssl.org>
(cherry picked from commit e9edfc419674f20b482a9beff9c246519f9c503e)
This commit is contained in:
Rich Salz 2014-09-03 12:02:13 -04:00
parent ff89be854e
commit f28c48d07e
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
doc/ssl/SSL_CTX_sess_set_cache_size.pod
View File

@ -15,6 +15,7 @@ SSL_CTX_sess_set_cache_size, SSL_CTX_sess_get_cache_size - manipulate session ca
SSL_CTX_sess_set_cache_size() sets the size of the internal session cache SSL_CTX_sess_set_cache_size() sets the size of the internal session cache
of context B<ctx> to B<t>. of context B<ctx> to B<t>.
This value is a hint and not an absolute; see the notes below.
SSL_CTX_sess_get_cache_size() returns the currently valid session cache size. SSL_CTX_sess_get_cache_size() returns the currently valid session cache size.
@ -25,8 +26,9 @@ currently 1024*20, so that up to 20000 sessions can be held. This size
can be modified using the SSL_CTX_sess_set_cache_size() call. A special can be modified using the SSL_CTX_sess_set_cache_size() call. A special
case is the size 0, which is used for unlimited size. case is the size 0, which is used for unlimited size.
When the maximum number of sessions is reached, no more new sessions are If adding the session makes the cache exceed its size, then unused
added to the cache. New space may be added by calling sessions are dropped from the end of the cache.
Cache space may also be reclaimed by calling
L<SSL_CTX_flush_sessions(3)|SSL_CTX_flush_sessions(3)> to remove L<SSL_CTX_flush_sessions(3)|SSL_CTX_flush_sessions(3)> to remove
expired sessions. expired sessions.