Home Esplora Aiuto
Accedi
OWEALs
/
openssl
mirror da git://git.openssl.org/openssl.git
2
0
Forka 0
File Problemi 1 Wiki
Albero (Tree): 6594baf645
Rami (Branch) Tag
openssl
/
doc
/
man3
/
SSL_CTX_set_timeout.pod

SSL_CTX_set_timeout.pod 2.5 KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 
  1. =pod
    2. 

  2. 

  3. =head1 NAME
    4. 

  4. 

  5. SSL_CTX_set_timeout, SSL_CTX_get_timeout - manipulate timeout values for session caching
    6. 

  6. 

  7. =head1 SYNOPSIS
    8. 

  8. 

  9.  #include <openssl/ssl.h>
    10. 

  10. 

  11.  long SSL_CTX_set_timeout(SSL_CTX *ctx, long t);
    12. 

  12.  long SSL_CTX_get_timeout(SSL_CTX *ctx);
    13. 

  13. 

  14. =head1 DESCRIPTION
    15. 

  15. 

  16. SSL_CTX_set_timeout() sets the timeout for newly created sessions for
    17. 

  17. B<ctx> to B<t>. The timeout value B<t> must be given in seconds.
    18. 

  18. 

  19. SSL_CTX_get_timeout() returns the currently set timeout value for B<ctx>.
    20. 

  20. 

  21. =head1 NOTES
    22. 

  22. 

  23. Whenever a new session is created, it is assigned a maximum lifetime. This
    24. 

  24. lifetime is specified by storing the creation time of the session and the
    25. 

  25. timeout value valid at this time. If the actual time is later than creation
    26. 

  26. time plus timeout, the session is not reused.
    27. 

  27. 

  28. Due to this realization, all sessions behave according to the timeout value
    29. 

  29. valid at the time of the session negotiation. Changes of the timeout value
    30. 

  30. do not affect already established sessions.
    31. 

  31. 

  32. The expiration time of a single session can be modified using the
    33. 

  33. L<SSL_SESSION_get_time(3)> family of functions.
    34. 

  34. 

  35. Expired sessions are removed from the internal session cache, whenever
    36. 

  36. L<SSL_CTX_flush_sessions(3)> is called, either
    37. 

  37. directly by the application or automatically (see
    38. 

  38. L<SSL_CTX_set_session_cache_mode(3)>)
    39. 

  39. 

  40. The default value for session timeout is decided on a per protocol
    41. 

  41. basis, see L<SSL_get_default_timeout(3)>.
    42. 

  42. All currently supported protocols have the same default timeout value
    43. 

  43. of 300 seconds.
    44. 

  44. 

  45. This timeout value is used as the ticket lifetime hint for stateless session
    46. 

  46. tickets. It is also used as the timeout value within the ticket itself.
    47. 

  47. 

  48. For TLSv1.3, RFC8446 limits transmission of this value to 1 week (604800
    49. 

  49. seconds).
    50. 

  50. 

  51. For TLSv1.2, tickets generated during an initial handshake use the value
    52. 

  52. as specified. Tickets generated during a resumed handshake have a value
    53. 

  53. of 0 for the ticket lifetime hint.
    54. 

  54. 

  55. =head1 RETURN VALUES
    56. 

  56. 

  57. SSL_CTX_set_timeout() returns the previously set timeout value.
    58. 

  58. 

  59. SSL_CTX_get_timeout() returns the currently set timeout value.
    60. 

  60. 

  61. =head1 SEE ALSO
    62. 

  62. 

  63. L<ssl(7)>,
    64. 

  64. L<SSL_CTX_set_session_cache_mode(3)>,
    65. 

  65. L<SSL_SESSION_get_time(3)>,
    66. 

  66. L<SSL_CTX_flush_sessions(3)>,
    67. 

  67. L<SSL_get_default_timeout(3)>
    68. 

  68. 

  69. =head1 COPYRIGHT
    70. 

  70. 

  71. Copyright 2001-2022 The OpenSSL Project Authors. All Rights Reserved.
    72. 

  72. 

  73. Licensed under the Apache License 2.0 (the "License").  You may not use
    74. 

  74. this file except in compliance with the License.  You can obtain a copy
    75. 

  75. in the file LICENSE in the source distribution or at
    76. 

  76. L<https://www.openssl.org/source/license.html>.
    77. 

  77. 

  78. =cut
    79.