1 files changed, 54 insertions, 0 deletions
diff --git a/src/lib/libssl/doc/SSL_CTX_flush_sessions.3 b/src/lib/libssl/doc/SSL_CTX_flush_sessions.3
new file mode 100644
index 0000000000..6431008c4f
--- /dev/null
+++ b/src/lib/libssl/doc/SSL_CTX_flush_sessions.3
@@ -0,0 +1,54 @@
+.Dd $Mdocdate: October 12 2014 $
+.Dt SSL_CTX_FLUSH_SESSIONS 3
+.Os
+.Sh NAME
+.Nm SSL_CTX_flush_sessions ,
+.Nm SSL_flush_sessions
+.Nd remove expired sessions
+.Sh SYNOPSIS
+.In openssl/ssl.h
+.Ft void
+.Fn SSL_CTX_flush_sessions "SSL_CTX *ctx" "long tm"
+.Ft void
+.Fn SSL_flush_sessions "SSL_CTX *ctx" "long tm"
+.Sh DESCRIPTION
+.Fn SSL_CTX_flush_sessions
+causes a run through the session cache of
+.Fa ctx
+to remove sessions expired at time
+.Fa tm .
+.Pp
+.Fn SSL_flush_sessions
+is a synonym for
+.Fn SSL_CTX_flush_sessions .
+.Sh NOTES
+If enabled, the internal session cache will collect all sessions established
+up to the specified maximum number (see
+.Fn SSL_CTX_sess_set_cache_size ) .
+As sessions will not be reused ones they are expired, they should be
+removed from the cache to save resources.
+This can either be done automatically whenever 255 new sessions were
+established (see
+.Xr SSL_CTX_set_session_cache_mode 3 )
+or manually by calling
+.Fn SSL_CTX_flush_sessions .
+.Pp
+The parameter
+.Fa tm
+specifies the time which should be used for the
+expiration test, in most cases the actual time given by
+.Fn time 0
+will be used.
+.Pp
+.Fn SSL_CTX_flush_sessions
+will only check sessions stored in the internal cache.
+When a session is found and removed, the
+.Va remove_session_cb
+is however called to synchronize with the external cache (see
+.Xr SSL_CTX_sess_set_get_cb 3 ) .
+.Sh RETURN VALUES
+.Sh SEE ALSO
+.Xr ssl 3 ,
+.Xr SSL_CTX_sess_set_get_cb 3 ,
+.Xr SSL_CTX_set_session_cache_mode 3 ,
+.Xr SSL_CTX_set_timeout 3

diff --git a/src/lib/libssl/doc/SSL_CTX_flush_sessions.3 b/src/lib/libssl/doc/SSL_CTX_flush_sessions.3 new file mode 100644 index 0000000000..6431008c4f --- /dev/null +++ b/src/lib/libssl/doc/SSL_CTX_flush_sessions.3
@@ -0,0 +1,54 @@
	1	.Dd $Mdocdate: October 12 2014 $
	2	.Dt SSL_CTX_FLUSH_SESSIONS 3
	3	.Os
	4	.Sh NAME
	5	.Nm SSL_CTX_flush_sessions ,
	6	.Nm SSL_flush_sessions
	7	.Nd remove expired sessions
	8	.Sh SYNOPSIS
	9	.In openssl/ssl.h
	10	.Ft void
	11	.Fn SSL_CTX_flush_sessions "SSL_CTX *ctx" "long tm"
	12	.Ft void
	13	.Fn SSL_flush_sessions "SSL_CTX *ctx" "long tm"
	14	.Sh DESCRIPTION
	15	.Fn SSL_CTX_flush_sessions
	16	causes a run through the session cache of
	17	.Fa ctx
	18	to remove sessions expired at time
	19	.Fa tm .
	20	.Pp
	21	.Fn SSL_flush_sessions
	22	is a synonym for
	23	.Fn SSL_CTX_flush_sessions .
	24	.Sh NOTES
	25	If enabled, the internal session cache will collect all sessions established
	26	up to the specified maximum number (see
	27	.Fn SSL_CTX_sess_set_cache_size ) .
	28	As sessions will not be reused ones they are expired, they should be
	29	removed from the cache to save resources.
	30	This can either be done automatically whenever 255 new sessions were
	31	established (see
	32	.Xr SSL_CTX_set_session_cache_mode 3 )
	33	or manually by calling
	34	.Fn SSL_CTX_flush_sessions .
	35	.Pp
	36	The parameter
	37	.Fa tm
	38	specifies the time which should be used for the
	39	expiration test, in most cases the actual time given by
	40	.Fn time 0
	41	will be used.
	42	.Pp
	43	.Fn SSL_CTX_flush_sessions
	44	will only check sessions stored in the internal cache.
	45	When a session is found and removed, the
	46	.Va remove_session_cb
	47	is however called to synchronize with the external cache (see
	48	.Xr SSL_CTX_sess_set_get_cb 3 ) .
	49	.Sh RETURN VALUES
	50	.Sh SEE ALSO
	51	.Xr ssl 3 ,
	52	.Xr SSL_CTX_sess_set_get_cb 3 ,
	53	.Xr SSL_CTX_set_session_cache_mode 3 ,
	54	.Xr SSL_CTX_set_timeout 3