Groups keyboard shortcuts have been updated
Dismiss
See shortcuts

SSL client and server session cache settings (XNIO)

12 views
Skip to first unread message

Brad Wood

unread,
Oct 27, 2022, 4:12:58 PM10/27/22
to Undertow Dev
Can I get clarification on the following XNIO settings please?

SSL_CLIENT_SESSION_CACHE_SIZE
          The size of the SSL client session cache.
SSL_CLIENT_SESSION_TIMEOUT
          The SSL client session timeout (in seconds).

SSL_SERVER_SESSION_CACHE_SIZE
          The size of the SSL server session cache.
SSL_SERVER_SESSION_TIMEOUT
          The SSL server session timeout (in seconds).

Nowhere can I find the default values for these. 

Also, which is the equivalent to this IIS setting
which appears to default to 10 hours.

Thanks!

~Brad

Developer Advocate
Ortus Solutions, Corp 

ColdBox Platform: http://www.coldbox.org 

Flavia Rainone

unread,
Dec 23, 2022, 11:33:13 PM12/23/22
to Undertow Dev
Hi Brad,

Reviewing your messages and I just noticed that this question somehow got lost (I was on PTO back when you sent them, sorry for missing them).
Those values are used to configure the javax.net.ssl.SSLContext:
sslContext.getClientSessionContext().setSessionCacheSize(optionMap.get(Options.SSL_CLIENT_SESSION_CACHE_SIZE, 0));
sslContext.getClientSessionContext().setSessionTimeout(optionMap.get(Options.SSL_CLIENT_SESSION_TIMEOUT, 0));
sslContext.getServerSessionContext().setSessionCacheSize(optionMap.get(Options.SSL_SERVER_SESSION_CACHE_SIZE, 0));
sslContext.getServerSessionContext().setSessionTimeout(optionMap.get(Options.SSL_SERVER_SESSION_TIMEOUT, 0));

The default values for all of those is 0.  It appears to me that client cache time in the IIS could be equivalent to SSL_CLIENT_CACHE_TIMEOUT.

Best regards,
Flavia
Reply all
Reply to author
Forward
0 new messages