用法
tls-session-caching yes
tls-session-cache-size 20480
tls-session-cache-timeout 300
?
用途
會(huì)話重用時(shí)置鼻,縮短建立連接時(shí)間趋急。
概括來(lái)講:服務(wù)端會(huì)在server hello返回session ID娘赴,客戶端會(huì)話重用時(shí)需帶上這個(gè)session ID扔傅,服務(wù)端會(huì)在緩存中查找,如果找到會(huì)省去一些其他步驟诡蜓,加快連接建立時(shí)間熬甫。
tls-session-caching: yes開(kāi)啟會(huì)話緩存,no關(guān)閉會(huì)話緩存万牺。
tls-session-cache-size: 設(shè)置緩存多少會(huì)話罗珍,0代表無(wú)限制洽腺。
tls-session-cache-timeout: 設(shè)置會(huì)話的緩存時(shí)間脚粟。
?
注意事項(xiàng):
1.默認(rèn)是開(kāi)啟會(huì)話緩存的覆旱。
2.緩存的會(huì)話個(gè)數(shù),默認(rèn)20480個(gè)核无。
3.緩存的超時(shí)時(shí)間扣唱,默認(rèn)300秒。
?
redis源碼
https://github.com/redis/redis/blob/6.2.6/src/tls.c
310 if (ctx_config->session_caching) {
311 SSL_CTX_set_session_cache_mode(ctx, SSL_SESS_CACHE_SERVER);
312 SSL_CTX_sess_set_cache_size(ctx, ctx_config->session_cache_size);
313 SSL_CTX_set_timeout(ctx, ctx_config->session_cache_timeout);
314 SSL_CTX_set_session_id_context(ctx, (void *) "redis", 5);
315 } else {
316 SSL_CTX_set_session_cache_mode(ctx, SSL_SESS_CACHE_OFF);
317 }
?
openssl
SSL_CTX_set_session_cache_mode
SSL_CTX_sess_set_cache_size
SSL_CTX_set_timeout
?
原生注釋
# By default, TLS session caching is enabled to allow faster and less expensive
# reconnections by clients that support it. Use the following directive to disable
# caching.
#
# tls-session-caching no
# Change the default number of TLS sessions cached. A zero value sets the cache
# to unlimited size. The default size is 20480.
#
# tls-session-cache-size 5000
# Change the default timeout of cached TLS sessions. The default timeout is 300
# seconds.
#
# tls-session-cache-timeout 60
?
redis.conf詳解目錄
redis.conf詳解總綱
歡迎加v交流:maxwangnan005
