Skip to content

Commit

Permalink
Allow session resumption (specially when client does not support rfc5…
Browse files Browse the repository at this point in the history 
…077 extension)
  • Loading branch information
emeric committed Jul 13, 2011
1 parent d3a1f6b commit 877b16d
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions stud.c
View file
Expand Up @@ -287,6 +287,7 @@ static void shutdown_proxy(proxystate *ps, SHUTDOWN_REQUESTOR req) {
close(ps->fd_up);
close(ps->fd_down);

SSL_set_shutdown(ps->ssl, SSL_SENT_SHUTDOWN);
SSL_free(ps->ssl);

free(ps);
Expand Down

1 comment on commit 877b16d

@EmericBr
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If SSL_SENT_SHUTDOWN is not set, session is freed from cache and renegociated each time if client does not support rfc5077 tickets (great performance impact).

ex: on intel atom hardware, using sslv3 client benchmark tool, i goes from 270 hit/s (stud renegociate each time) to 1730 hit/s (no renegotiation).

Please sign in to comment.