[#CONJ-544] Support to disable SSL session resumption when using SSL

[CONJ-544] Support to disable SSL session resumption when using SSL Created: 2017-11-01 Updated: 2019-02-08 Resolved: 2019-01-14
Status:	Closed
Project:	MariaDB Connector/J
Component/s:	TLS
Affects Version/s:	None
Fix Version/s:	1.8.0, 2.4.0

Type:

Bug

Priority:

Major

Reporter:

Shuode Li

Assignee:

Diego Dupin

Resolution:

Fixed

Votes:

Labels:

SSL

Environment:

All operation system.

Description

Our environment is that. Our server is behind proxy, and proxy are behind load balancer. The MariaDB JDBC connector always using SSL session resumption, which cause the connection sometimes failed.

The failed reason is that SSL session resumption is that server side generate random session ID, and the client side cache it. The client side use the session ID to connect with server. If multi server(in our environment is proxy) had generated same SSL session ID for the different client, then the connection will failed after aggressive SSL handshake.

Orcale MySQL 5.1.44 has disabled the SSL session resumption by default. Could the MariaDB JDBC connector provide a option to disable the session resumption?

Comments

Comment by Diego Dupin [ 2019-01-14 ]

corrected with the same change than ~~CONJ-670~~

Generated at Thu Feb 08 03:16:32 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.

[CONJ-544] Support to disable SSL session resumption when using SSL Created: 2017-11-01 Updated: 2019-02-08 Resolved: 2019-01-14