re-use SSLSession between java client and Apache+mod-ssl Server
843811Jan 8 2002 — edited Apr 11 2002Hello,
(excuse me for my poor English, I'm a french guy)
I have a java 1.3 client which try to connect to a Apache server (1.3.22) with mod_ssl-2.8.5.
My keystore is created with keytool (jdk1.3) and contains a private key signed by open-ssl-0.9.6b and the CA certificate auto-signed.
The first time I connect to the server and do the handshake, a SSLSession is created and the dialog can be established.
But when I close the socket and create other SSLSocket with the same SSLSocketFactory, I can't re-use the same SSLSession because mod-ssl failed in caching the SSLSession (the ssl_scache_store function trace this in ssl_engine_log :
Inter-Process Session Cache: request=SET status=BAD id=3306D4FF7BA5ADD8B91DF38E30FBDACEF51D425925FEB30072A570BA966ED680 timeout=300s (session caching)). So the next time I send my SSLSession, it is not in the cache store, so mod-ssl re-create a new Session.
I create my SSLSocketFactory at the beginning of the process, and always create new SSLSockets with this factory.
I don't know if the problem comes from the java client or the apache-mod-ssl server...
When my java client try to re-use SSLSessions with www.verisign.com (for example), it works.
When a C client try to re-use SSLSessions with my Apache server, it works (Inter-Process Session Cache: request=SET status=OK ...)
Is anyone knows this problem ?