Bug #90394 SSL session cache: hits/misses wrong and size hardcoded
Submitted: 11 Apr 2018 19:57 Modified: 12 Apr 2018 12:16
Reporter: Daniël van Eeden (OCA) Email Updates:
Status: Verified Impact on me:
None 
Category:MySQL Server: Options Severity:S3 (Non-critical)
Version:5.7.21 OS:Any
Assigned to: CPU Architecture:Any
Tags: SSL, tls

[11 Apr 2018 19:57] Daniël van Eeden
Description:
From vio/viosslfactories.c:
709   SSL_CTX_sess_set_cache_size(ssl_fd->ssl_context, 128);

mysql> show global status like 'Ssl\_session\_cache\_%';
+-----------------------------+--------+
| Variable_name               | Value  |
+-----------------------------+--------+
| Ssl_session_cache_hits      | 0      |
| Ssl_session_cache_misses    | 0      |
| Ssl_session_cache_mode      | SERVER |
| Ssl_session_cache_overflows | 11746  |
| Ssl_session_cache_size      | 128    |
| Ssl_session_cache_timeouts  | 0      |
+-----------------------------+--------+
6 rows in set (0.01 sec)

So hits and misses don't seem to work properly.
And the size can't be changed without recompiling.
This is on MySQL 5.7.21 with OpenSSL.

How to repeat:
Check code and status variables.
[11 Apr 2018 19:58] Daniël van Eeden
.
[12 Apr 2018 12:16] MySQL Verification Team
Hello Daniël,

Thank you for the report and feedback!

Thanks,
Umesh