Issue:
------
In case of SSL certificate Authentication failure,
SSL/TCP infra was not releasing the reference to
session keeping the object forever in the map.
this was happening since TCP server state machine moves
ahead by adding the session to reference map before ssl
handshake is triggered, on handshake failure infra
doesn't remove the session from reference map causing
this issue
Fix:
----
move SSL handshake to the context of SSL server instead
of SSL Session object so that the Accept/Connect state
machine complete event can be triggered once the
handshake is complete
Reviewed: https:/ /review. opencontrail. org/13403 github. org/Juniper/ contrail- controller/ commit/ 8e52d701f8786ab 9e6c11e5b7bd6cf 3312fb21ad
Committed: http://
Submitter: Zuul
Branch: master
commit 8e52d701f8786ab 9e6c11e5b7bd6cf 3312fb21ad
Author: Prabhjot Singh Sethi <email address hidden>
Date: Fri Aug 28 16:18:14 2015 +0530
Fix session object reference management for SSL
Issue:
------
In case of SSL certificate Authentication failure,
SSL/TCP infra was not releasing the reference to
session keeping the object forever in the map.
this was happening since TCP server state machine moves
ahead by adding the session to reference map before ssl
handshake is triggered, on handshake failure infra
doesn't remove the session from reference map causing
this issue
Fix:
----
move SSL handshake to the context of SSL server instead
of SSL Session object so that the Accept/Connect state
machine complete event can be triggered once the
handshake is complete
Added test case of the same.
Closes-Bug: 1488434 ae3315f6f025ca3 046af485964
Change-Id: Ia8436f0f31392d