On Wed, Sep 23, 2009 at 10:19 AM, Ambroz Bizjak <ambr...@gmail.com> wrote: > > When a signal happens, I attempt to clean up everything. I PR_Close > client SSL file descriptors, and go global cleanup with > SECKEY_DestroyPrivateKey, CERT_DestroyCertificate, NSS_Shutdown and > PR_Cleanup.
This sounds good. Try adding a SSL_ShutdownServerSessionIDCache() call before the NSS_Shutdown() call, as our test SSL server selfserv.c does: http://bonsai.mozilla.org/cvsblame.cgi?file=mozilla/security/nss/cmd/selfserv/selfserv.c&rev=1.89&mark=2279,2281#2278 Basically you need to destroy every key, cert, slot, etc. before you call NSS_Shutdown. Wan-teh -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
