Push the SSL_CTX session_timeout zero logic up. This special-case is almost unexposed (the timeout is initialized to the default) except if the caller calls SSL_CTX_set_timeout(0). Preserve that behavior by mapping 0 to SSL_DEFAULT_SESSION_TIMEOUT in SSL_CTX_set_timeout but simplify the internal state. Change-Id: Ice03a519c25284b925f1e0cf485f2d8c54dc5038 Reviewed-on: https://boringssl-review.googlesource.com/13502 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <agl@google.com>

commit: 0b1bb12ce806e69a99ff48e01dd7d1069ca0b173 [log] [tgz]
author: David Benjamin <davidben@google.com> Sat Jan 28 14:32:53 2017 -0500
committer: Adam Langley <agl@google.com> Thu Feb 02 17:52:07 2017 +0000
tree: e12415e8565196291c90f746da001ce4b8299ede
parent: 0efa7592e3fb2ae647518a82ab19679b7c933d99 [diff] [blame]
diff --git a/ssl/ssl_session.c b/ssl/ssl_session.c
index bd5ef76..805bd48 100644
--- a/ssl/ssl_session.c
+++ b/ssl/ssl_session.c

@@ -934,6 +934,11 @@
     return 0;
   }
 
+  /* Historically, zero was treated as |SSL_DEFAULT_SESSION_TIMEOUT|. */
+  if (timeout == 0) {
+    timeout = SSL_DEFAULT_SESSION_TIMEOUT;
+  }
+
   long old_timeout = ctx->session_timeout;
   ctx->session_timeout = timeout;
   return old_timeout;
commit	0b1bb12ce806e69a99ff48e01dd7d1069ca0b173	[log] [tgz]
author	David Benjamin <davidben@google.com>	Sat Jan 28 14:32:53 2017 -0500
committer	Adam Langley <agl@google.com>	Thu Feb 02 17:52:07 2017 +0000
tree	e12415e8565196291c90f746da001ce4b8299ede
parent	0efa7592e3fb2ae647518a82ab19679b7c933d99 [diff] [blame]