SYSTEMS AND METHODS FOR ENCODING THE CORE IDENTIFIER IN THE SESSION IDENTIFIER
First Claim
1. A method of identifying a core establishing a secure socket layer (SSL) connection in a multi-core system via an SSL identifier, the method comprising:
- a) receiving, by a packet engine executing on a core of a multi-core system, a request from a client to establish a secure socket layer (SSL) session, the core assigned a core identifier;
b) establishing, by the packet engine, a session identifier for the SSL session;
c) encoding, by the packet engine, the core identifier in the session identifier to form a second session identifier; and
d) establishing, by the packet engine responsive to the request, the SSL session with the client using the second session identifier.
7 Assignments
0 Petitions
Accused Products
Abstract
The present invention is directed towards systems and methods for managing SSL session persistence and reuse in a multi-core system. A first core may indicate that an SSL session established by the first core is non-resumable. Responsive to the indication, the core may set an indicator at a location in memory accessible by each core of the multi-core system, the indicator indicating that the SSL session is non-resumable. A second core of the multi-core system may receive a request to reuse the SSL session. The request may include a session identifier of the SSL session. In addition, the session identifier may identify the first core as an establisher of the SSL session. The second core can identify from encoding of the session identifier whether the second core is not the establisher of the SSL session. Responsive to the identification, the second core may determine whether to resume the SSL session.
69 Citations
20 Claims
-
1. A method of identifying a core establishing a secure socket layer (SSL) connection in a multi-core system via an SSL identifier, the method comprising:
-
a) receiving, by a packet engine executing on a core of a multi-core system, a request from a client to establish a secure socket layer (SSL) session, the core assigned a core identifier; b) establishing, by the packet engine, a session identifier for the SSL session; c) encoding, by the packet engine, the core identifier in the session identifier to form a second session identifier; and d) establishing, by the packet engine responsive to the request, the SSL session with the client using the second session identifier. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method of determining an identifier of a core of a multi-core system via a Secure Socket Layer (SSL) session identifier, the method comprising:
-
a) receiving, by a packet engine executing on a core of a multi-core system, a request from a client via a secure socket layer (SSL) session, the request comprising a session identifier, the core assigned a core identifier; b) decoding, by the packet engine, a second core identifier encoded in the session identifier; and c) determining, by the packet engine, whether the second core identifier corresponds to the core identifier of the core. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification