From 89de98d961a38ba8e8698f5fab983ce7dfce0701 Mon Sep 17 00:00:00 2001 From: Kazuki Yamaguchi Date: Sun, 24 Apr 2016 04:05:40 +0900 Subject: test/openssl: don't test default session timeout The default session timeout for TLSv1 is 7200 and shouldn't be 300. And this should not be checked because the value is decided by just "the 24 hours mentioned in the TLSv1 spec is way too long for http, the cache would over fill" (from OpenSSL's source comment). Old OpenSSL (<= 1.0.2) set ssl_ctx->session_timeout on SSL_CTX_new(), which we call always with SSLv23_method(), and it isn't updated with SSL_set_ssl_method(). --- test/openssl/test_ssl_session.rb | 1 - 1 file changed, 1 deletion(-) diff --git a/test/openssl/test_ssl_session.rb b/test/openssl/test_ssl_session.rb index 511129cc5e..64d94ca848 100644 --- a/test/openssl/test_ssl_session.rb +++ b/test/openssl/test_ssl_session.rb @@ -55,7 +55,6 @@ tddwpBAEDjcwMzA5NTYzMTU1MzAwpQMCARM= session = ssl.session assert(session == OpenSSL::SSL::Session.new(session.to_pem)) assert(session == OpenSSL::SSL::Session.new(ssl)) - assert_equal(300, session.timeout) session.timeout = 5 assert_equal(5, session.timeout) assert_not_nil(session.time) -- cgit v1.2.3