Alexey Serbin has submitted this change and it was merged. ( http://gerrit.cloudera.org:8080/17197 )
Change subject: [security] turn off TLS session cache ...................................................................... [security] turn off TLS session cache As of now, a Kudu RPC connection cannot be re-established based on TLS session. Every connection attempt leads to negotiating a new connection from scratch since the client should have been calling SSL_set_session() explicitly to use a TLS session to re-establish previously used connection. Disabling the TLS session cache on both sides helps to spare a bit of memory and CPU needed to maintain the cache otherwise. Change-Id: I471b2c9dd3a406bb3604d86d28b5977289af2b09 Reviewed-on: http://gerrit.cloudera.org:8080/17197 Tested-by: Alexey Serbin <[email protected]> Reviewed-by: Grant Henke <[email protected]> Reviewed-by: Attila Bukor <[email protected]> --- M src/kudu/security/tls_context.cc 1 file changed, 9 insertions(+), 0 deletions(-) Approvals: Alexey Serbin: Verified Grant Henke: Looks good to me, but someone else must approve Attila Bukor: Looks good to me, approved -- To view, visit http://gerrit.cloudera.org:8080/17197 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-Project: kudu Gerrit-Branch: master Gerrit-MessageType: merged Gerrit-Change-Id: I471b2c9dd3a406bb3604d86d28b5977289af2b09 Gerrit-Change-Number: 17197 Gerrit-PatchSet: 2 Gerrit-Owner: Alexey Serbin <[email protected]> Gerrit-Reviewer: Alexey Serbin <[email protected]> Gerrit-Reviewer: Andrew Wong <[email protected]> Gerrit-Reviewer: Attila Bukor <[email protected]> Gerrit-Reviewer: Grant Henke <[email protected]> Gerrit-Reviewer: Kudu Jenkins (120)
