Forum Discussion

MVP

Mar 10, 2013

ssl::renegotiate changes SSL session ID and makes it impossible to resume?

when calling ssl::renegotiate (in v11.2 / 11.3) it seems that the SSL session ID changes (very slightly, gets +1 somewhere near 2/3s) and can't be used anymore by new resume requests that request in ...

MVP

Mar 13, 2013

the code surrounding it is:


      SSL::authenticate once
      SSL::authenticate depth 9
      SSL::cert mode request
      SSL::renegotiate
      return

the client honors the new session ID, although the change in it is very small, but afterwards the F5 doesn't want to use it anymore for new TCP sessions.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)