From 4753ad858c299a34815988907989c98d5285e57e Mon Sep 17 00:00:00 2001 From: Matt Caswell Date: Mon, 23 Apr 2018 11:23:43 +0100 Subject: [PATCH] Document when a session gets removed from cache Document the fact that if a session is not closed down cleanly then the session gets removed from the cache and marked as non-resumable. Fixes #4720 Reviewed-by: Rich Salz Reviewed-by: Paul Dale (Merged from https://github.com/openssl/openssl/pull/6053) --- doc/man3/SSL_get_session.pod | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/doc/man3/SSL_get_session.pod b/doc/man3/SSL_get_session.pod index b2e92af2ef..7ed63538b4 100644 --- a/doc/man3/SSL_get_session.pod +++ b/doc/man3/SSL_get_session.pod @@ -48,6 +48,11 @@ SSL_SESSION object that cannot be used for resumption in TLSv1.3. It also enables applications to obtain information about all sessions sent by the server. +A session will be automatically removed from the session cache and marked as +non-resumable if the connection is not closed down cleanly, e.g. if a fatal +error occurs on the connection or L is not called prior to +L. + In TLSv1.3 it is recommended that each SSL_SESSION object is only used for resumption once. -- 2.25.1