From 7476f3ac3bdbcfb4f73317d28aed35740fc74287 Mon Sep 17 00:00:00 2001 From: =?utf8?q?Bodo=20M=C3=B6ller?= Date: Fri, 30 Dec 2005 23:51:36 +0000 Subject: [PATCH] Rewrite timeout computation in a way that is less prone to overflow. (Problem reported by Peter Sylvester.) --- ssl/ssl_sess.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ssl/ssl_sess.c b/ssl/ssl_sess.c index 5286964e69..7a4bb92b5c 100644 --- a/ssl/ssl_sess.c +++ b/ssl/ssl_sess.c @@ -389,7 +389,7 @@ int ssl_get_prev_session(SSL *s, unsigned char *session_id, int len) CRYPTO_add(&ret->references,1,CRYPTO_LOCK_SSL_SESSION); #endif - if ((long)(ret->time+ret->timeout) < (long)time(NULL)) /* timeout */ + if (ret->timeout < (long)(time(NULL) - ret->time)) /* timeout */ { s->ctx->stats.sess_timeout++; /* remove it from the cache */ -- 2.25.1