aboutsummaryrefslogtreecommitdiff
path: root/lib/vtls/darwinssl.h
diff options
context:
space:
mode:
authorMichael Kaufmann <mail@michael-kaufmann.ch>2018-11-14 11:52:45 +0100
committerMichael Kaufmann <mail@michael-kaufmann.ch>2018-11-21 11:18:25 +0100
commit549310e907e82e44c59548351d4c6ac4aaada114 (patch)
tree056ac86b3bd183660bfdee729ad13ab4bafda817 /lib/vtls/darwinssl.h
parent30a65381f97ef1f301285c6dfadc0ac6ba905818 (diff)
openssl: support session resume with TLS 1.3
Session resumption information is not available immediately after a TLS 1.3 handshake. The client must wait until the server has sent a session ticket. Use OpenSSL's "new session" callback to get the session information and put it into curl's session cache. For TLS 1.3 sessions, this callback will be invoked after the server has sent a session ticket. The "new session" callback is invoked only if OpenSSL's session cache is enabled, so enable it and use the "external storage" mode which lets curl manage the contents of the session cache. A pointer to the connection data and the sockindex are now saved as "SSL extra data" to make them available to the callback. This approach also works for old SSL/TLS versions and old OpenSSL versions. Reviewed-by: Daniel Stenberg <daniel@haxx.se> Fixes #3202 Closes #3271
Diffstat (limited to 'lib/vtls/darwinssl.h')
0 files changed, 0 insertions, 0 deletions