Rewrite timeout computation in a way that is less prone to overflow.
(Problem reported by Peter Sylvester.)
This commit is contained in:
Bodo Möller
parent
25d5d1a60d
commit
a14afd0804
1 changed files with 1 additions and 1 deletions
|
|
@ -389,7 +389,7 @@ int ssl_get_prev_session(SSL *s, unsigned char *session_id, int len)
|
|||
CRYPTO_add(&ret->references,1,CRYPTO_LOCK_SSL_SESSION);
|
||||
#endif
|
||||
|
||||
if ((long)(ret->time+ret->timeout) < (long)time(NULL)) /* timeout */
|
||||
if (ret->timeout < (long)(time(NULL) - ret->time)) /* timeout */
|
||||
{
|
||||
s->ctx->stats.sess_timeout++;
|
||||
/* remove it from the cache */
|
||||
|
|
|
|||
Loading…
Reference in a new issue