mirror of
https://github.com/isc-projects/bind9.git
synced 2026-07-15 19:22:46 -04:00
Disassociate the SSL object from the cached SSL_SESSION
When the SSL object was destroyed, it would invalidate all SSL_SESSION
objects including the cached, but not yet used, TLS session objects.
Properly disassociate the SSL object from the SSL_SESSION before we
store it in the TLS session cache, so we can later destroy it without
invalidating the cached TLS sessions.
Co-authored-by: Ondřej Surý <ondrej@isc.org>
Co-authored-by: Artem Boldariev <artem@isc.org>
Co-authored-by: Aram Sargsyan <aram@isc.org>
(cherry picked from commit c11b736e44)
This commit is contained in:
parent
24ac7a7cd2
commit
bbf34c0604
1 changed files with 2 additions and 0 deletions
|
|
@ -1657,6 +1657,8 @@ isc_tlsctx_client_session_cache_keep(isc_tlsctx_client_session_cache_t *cache,
|
|||
return;
|
||||
}
|
||||
|
||||
SSL_set_session(tls, NULL);
|
||||
|
||||
isc_mutex_lock(&cache->lock);
|
||||
|
||||
name_len = strlen(remote_peer_name);
|
||||
|
|
|
|||
Loading…
Reference in a new issue