Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8210985

Update the default SSL session cache size to 20480

    XMLWordPrintable

    Details

    • Subcomponent:
    • Resolved In Build:
      b23
    • CPU:
      generic
    • OS:
      generic

      Backports

        Description

        The default value for the maximum number of entries in the SSL session cache (which is a SoftReference cache) is infinite, and the entry timeout is 24 hours. With larger heaps, we've run into situations where the cache ends up with several million entries at the 24 hour mark, at which time many of them are invalidated at almost the same time, which can result in multi-minute pauses, which are effectively service failures. We (Amazon) have experimented with using 10k as the default maximum number of entries with good results: i.e., no latency increases due to sessions falling out of the cache.

        The session cache size can be set via SSLSessionContext.setSessionCacheSize() or via the javax.net.ssl.sessionCachSize, but not everyone knows about these or uses them, so a change in the default value would be worth investigating.

          Attachments

            Issue Links

              Activity

                People

                Assignee:
                xuelei Xue-Lei Fan
                Reporter:
                phh Paul Hohensee
                Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                  Dates

                  Created:
                  Updated:
                  Resolved: