tls: destroy singleUse context immediately

Destroy singleUse context right after it is going out of use.

Fix: https://github.com/iojs/io.js/issues/1522
PR-URL: https://github.com/iojs/io.js/pull/1529
Reviewed-By: Shigeki Ohtsu <ohtsu@iij.ad.jp>

diff --git a/lib/_tls_common.js b/lib/_tls_common.js
index 3040b3a..d857717 100644 (file)
--- a/lib/_tls_common.js
+++ b/lib/_tls_common.js
@@ -134,8 +134,10 @@ exports.createSecureContext = function createSecureContext(options, context) {
   }
 
   // Do not keep read/write buffers in free list
-  if (options.singleUse)
+  if (options.singleUse) {
+    c.singleUse = true;
     c.context.setFreeListLength(0);
+  }
 
   return c;
 };

diff --git a/lib/_tls_wrap.js b/lib/_tls_wrap.js
index 7f83e2f..122c704 100644 (file)
--- a/lib/_tls_wrap.js
+++ b/lib/_tls_wrap.js
@@ -301,7 +301,9 @@ TLSSocket.prototype._wrapHandle = function(handle) {
 };
 
 TLSSocket.prototype._destroySSL = function _destroySSL() {
-  return this.ssl.destroySSL();
+  this.ssl.destroySSL();
+  if (this.ssl._secureContext.singleUse)
+    this.ssl._secureContext.context.close();
 };
 
 TLSSocket.prototype._init = function(socket, wrap) {