SecretDecoderRing: Logout vs. LogoutAndTeardown
Posted: 2018-04-14, 15:21
I'm looking at an issue with ChatZilla that has to do with SSL/TLS session caching. I believe I found a work-around for this in the form of two methods in the nsISecretDecoderRing interface: logout and logoutAndTeardown. From what I can tell, both of these methods clear the SSL cache, which solves the issue. (Ideally for my case, there would a way to clear the SSL cache entry for a single connection instead of the entire cache, but it doesn't look like that is possible in the existing codebase.) The difference between the two methods is that logoutAndTeardown also invalidates all secure connections and causes them to close. From a usability standpoint, this is not great when you have multiple SSL sockets and only one of them is acting up due to the aforementioned caching issue.
My question is, in the context of secure sockets, is there any disadvantage to using logout as opposed to logoutAndTeardown?
My question is, in the context of secure sockets, is there any disadvantage to using logout as opposed to logoutAndTeardown?