Notes/Domino Fix List
SPR # SFPN69ET56Fixed in 6.5.5; 6.5.4 FP2; 8.5.3; 8.5.2 FP3 releaseSecurity fix



Product Area: Server Technical Area: Security Platform: Cross Platform

Lotus Customer Support APAR: LO11438

SPR# SFPN69ET56 - Added the new Notes.ini variable (SSL_SESSION_SIZE) that can be used to set the default starting size of elements in the SSL session resumption cache. Increasing the size of this variable will result in a lower incidence of elements being reallocated on the fly in order to hold large X.509 client certificates, but will also consume more memory.

Beginning in 8.5.2 Fix Pack 3 and 8.5.3, there is a new notes.ini SSL_USE_ADDSESSION2. If set SSL_USE_ADDSESSION2=1 implements a new version of the SSL_ADDSESSION routine that resolves some stability issues.

Technote Number: 1411022

Problem:
This issue was reported to Quality Engineering as SPR# SFPN69ET56 and has been
fixed in Domino 6.5.4 Fix Pack 2 and Domino 6.5.5.
Excerpt from the Lotus Notes and Domino Release 6.5.4 Fix Pack 2 and 6.5.5 fix
list (available at http://www.ibm.com/developerworks/lotus):
SPR# SFPN69ET56 - Added the new Notes.ini variable (SSL_SESSION_SIZE) that can
be used to set the default starting size of elements in the SSL session
resumption cache. Increasing the size of this variable will result in a lower
incidence of elements being reallocated on the fly in order to hold large X.509
client certificates, but will also consume more memory.

If you are experiencing this crash, apply Fix Pack 2 or upgrade to 6.5.5, then
add the Notes.ini variable SSL_SESSION_SIZE. The recommendation is to set this
number to be 100 + the maximum size of one of the client certificates, for
example, a value of 3000 or so.

Refer to the Upgrade Central site for details on upgrading Notes/Domino. More >



Last Modified on 07/10/2015

Go back