RE: Caching SSL Sessions

Mon, 11 Sep 2000 02:54:11 -0700 

There is a note (written by EAY) on sessions (with code fragments) amongst the
original SSLeay documents.

Cheers
Phil
On 11-Sep-00 Wirta, Ville wrote:
> I'd also be VERY interested of this session-cache-thing but I've allready
> seen two different (as I understood) ways to accomplish this and I'm
> confused. I wonder if there is a "session-how-to" somewhere or a simple
> example. I'd also like to know if it is a must to be able to touch the
> client code. My clients are browsers and I've heard that atleast Apache is
> capable of caching sessions. How does Apache do it? I mean if the browser
> does'nt suggest a session number like someone said before?
> 
> So, is it just a matter of a few fuction calls or do I have to change my
> hole program to get this work? I wish I was so good I'd be able to find it
> out my self but as I am what I am I'm gratefully waiting for knowledge given
> from above :-)
> 
> Thanks allready!
> 
>       Yours sincerelly   VW
> 
> 
> -----Original Message-----
> From: Amit Chopra [mailto:[EMAIL PROTECTED]]
> Sent: Saturday, September 09, 2000 10:10 AM
> To: [EMAIL PROTECTED]
> Subject: Re: Caching SSL Sessions
> 
> 
> Before calling SSL_free(pSSL);
> call SSL_set_shutdown(pSSL,SSL_SENT_SHUTDOWN|SSL_RECEIVED_SHUTDOWN);
> 
> This should solve your problem on the server side. 
> 
> Are you sure you want to be calling SSL_new and SSL_free for every
> connection?
> After serving a connection you can do
>       SSL_clear(pSSL);
>       SSL_set_session(pSSL,NULL);
>       SSL_set_accept_state(pSSL) ;
> 
> Using above you can re-use the same SSL structure and session caching is 
> also enabled.
> 
> Hope this helps,
> Amit
> 
> Bill Rebey wrote:
>> 
>> It's not so much working.  Perhaps I'm doing something inherently wrong.
>>
> ______________________________________________________________________
> OpenSSL Project                                 http://www.openssl.org
> User Support Mailing List                    [EMAIL PROTECTED]
> Automated List Manager                           [EMAIL PROTECTED]
> ______________________________________________________________________
> OpenSSL Project                                 http://www.openssl.org
> User Support Mailing List                    [EMAIL PROTECTED]
> Automated List Manager                           [EMAIL PROTECTED]

----------------------------------
E-Mail: Phil Shattky <[EMAIL PROTECTED]>
Date: 11-Sep-00
Time: 21:48:24

This message was sent by XFMail
----------------------------------
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to