| =pod |
| |
| =head1 NAME |
| |
| SSL_CTX_flush_sessions, SSL_flush_sessions - remove expired sessions |
| |
| =head1 SYNOPSIS |
| |
| #include <openssl/ssl.h> |
| |
| void SSL_CTX_flush_sessions(SSL_CTX *ctx, long tm); |
| void SSL_flush_sessions(SSL_CTX *ctx, long tm); |
| |
| =head1 DESCRIPTION |
| |
| SSL_CTX_flush_sessions() causes a run through the session cache of |
| B<ctx> to remove sessions expired at time B<tm>. |
| |
| SSL_flush_sessions() is a synonym for SSL_CTX_flush_sessions(). |
| |
| =head1 NOTES |
| |
| If enabled, the internal session cache will collect all sessions established |
| up to the specified maximum number (see SSL_CTX_sess_set_cache_size()). |
| As sessions will not be reused ones they are expired, they should be |
| removed from the cache to save resources. This can either be done |
| automatically whenever 255 new sessions were established (see |
| L<SSL_CTX_set_session_cache_mode(3)|SSL_CTX_set_session_cache_mode(3)>) |
| or manually by calling SSL_CTX_flush_sessions(). |
| |
| The parameter B<tm> specifies the time which should be used for the |
| expiration test, in most cases the actual time given by time(0) |
| will be used. |
| |
| SSL_CTX_flush_sessions() will only check sessions stored in the internal |
| cache. When a session is found and removed, the remove_session_cb is however |
| called to synchronize with the external cache (see |
| L<SSL_CTX_sess_set_get_cb(3)|SSL_CTX_sess_set_get_cb(3)>). |
| |
| =head1 RETURN VALUES |
| |
| =head1 SEE ALSO |
| |
| L<ssl(3)|ssl(3)>, |
| L<SSL_CTX_set_session_cache_mode(3)|SSL_CTX_set_session_cache_mode(3)>, |
| L<SSL_CTX_set_timeout(3)|SSL_CTX_set_timeout(3)>, |
| L<SSL_CTX_sess_set_get_cb(3)|SSL_CTX_sess_set_get_cb(3)> |
| |
| =cut |
