Hi,
> I'd like to know if the browsers IE and Netscape do reuse the
> sessions because otherwise it's pretty useless for me taking that SSL-cache
> into use. Do you happen to know if they do or not?
They do. That's what I meant when I said they cache sessions.
When your application starts
1. pCtx = SSL_CTX_new();
2. pSSL = SSL_new(pCtx);
Now before you start handling a connection, for each connection call
SSL_clear(pSSL);
SSL_set_session(pSSL,NULL);
SSL_set_accept_state(pSSL) ;
When you stop application,
1. Call SSL_free(pSSL);
2. Call SSL_CTX_free(pCtx);
Not doing SSL_new and SSL_free for each connections helps avoid
fragmentation and heap access (heap access is serialized on NT. I
believe
its the same on Linux). These tips really mean much only if efficiency
is
your primary concern.
Good luck,
Amit.
>
> Thanks for helping!
>
> Yours VW
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
