Hello All,
I am facing some issues in an application after migrating from openssl 0.9.8d to openssl-0.9.8r. In the current application implementation using openssl 0.9.8d, we use openssl session cache mechanism on the server side by SSL_SESS_CACHE_SERVER option for the context. Also, the application has its own caching mechanism on the client side, where it retains the connection ID and SSL session and re-use it for the next connection request. We use a configuration based on which we enable/disable caching on both Client and Server side. The application is used in a scenario where the client makes around 100 connections sequentially to the server with the following setting :- Client side caching = ON Server side caching = OFF With the above setting the client will re-use the connection ID and session and this scenario works perfectly. But after migration to openssl-0.9.8r version the above scenario fails . The problem observed is that the 4th sequential connection made from client is failing at the accept call with the following error. SSL accept error : A failure in the SSL library occurred, usually a protocol error: session id context uninitialized Also in both versions ( 9.8d and 9.8 r) , the sequential connections works perfectly if the Caching is either ON/OFF on both client and Server simultaneously. - - Can somebody please help me on the above failure observed. - - Is the above failure expected as per Openssl implementation. - - Is there a difference between the 9.8d and 9.8r in terms of cache implementation. Thanks, Siby
