Uploaded image for project: 'WildFly OpenSSL'
  1. WildFly OpenSSL
  2. WFSSL-56

Invalidate the removed session

    XMLWordPrintable

Details

    Description

      Description from Stuart:

      This is a new potential fix for WFSSL-51. The previous fix needs to be reverted in the native code.

      There are two ways sessions can be removed from the cache, either by timeout/cache size limits being exceeded, or by explicitly calling invalidate from the java code.

      The old fix would call SSL_SESSION_free in the remove callback, which worked for the timeout case, but in the invalidate case the session had already been freed.

      This new approach will hopefully work better.

      Attachments

        Issue Links

          Activity

            People

              fjuma1@redhat.com Farah Juma
              fjuma1@redhat.com Farah Juma
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: