bf48364a8c
Due to recent changes, changing the SSL session timeout from cert_cb is not possible anymore since the new |SSL_SESSION| is initialized *after* cert_cb is run. The alternative would be using |SSL_CTX_set_timeout| but the specific |SSL_CTX| could be shared by multiple |SSL|s. Setting a value on a per-connection basis is useful in case timeouts need to be calculated dynamically based on specific certificate/domain information that would be retrieved from inside cert_cb (or other callbacks). It would also be possible to set the value to 0 to prevent session resumption, which is not otherwise doable in the handshake callbacks. Change-Id: I730a528c647f83f7f77f59b5b21d7e060e4c9843 Reviewed-on: https://boringssl-review.googlesource.com/12440 Reviewed-by: David Benjamin <davidben@google.com> Commit-Queue: David Benjamin <davidben@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> |
||
|---|---|---|
| .. | ||
| openssl | ||