Uploaded image for project: 'MariaDB Connector/J'
  1. MariaDB Connector/J
  2. CONJ-544

Support to disable SSL session resumption when using SSL

    Details

    • Type: Bug
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 2.4.0, 1.8.0
    • Component/s: TLS
    • Labels:
    • Environment:
      All operation system.

      Description

      Our environment is that. Our server is behind proxy, and proxy are behind load balancer. The MariaDB JDBC connector always using SSL session resumption, which cause the connection sometimes failed.

      The failed reason is that SSL session resumption is that server side generate random session ID, and the client side cache it. The client side use the session ID to connect with server. If multi server(in our environment is proxy) had generated same SSL session ID for the different client, then the connection will failed after aggressive SSL handshake.

      Orcale MySQL 5.1.44 has disabled the SSL session resumption by default. Could the MariaDB JDBC connector provide a option to disable the session resumption?

        Attachments

          Activity

            People

            • Assignee:
              diego dupin Diego Dupin
              Reporter:
              shuodl Shuode Li
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: