diff options
author | Michael Kaufmann <mail@michael-kaufmann.ch> | 2018-11-14 11:52:45 +0100 |
---|---|---|
committer | Michael Kaufmann <mail@michael-kaufmann.ch> | 2018-11-21 11:18:25 +0100 |
commit | 549310e907e82e44c59548351d4c6ac4aaada114 (patch) | |
tree | 056ac86b3bd183660bfdee729ad13ab4bafda817 /tests/certs | |
parent | 30a65381f97ef1f301285c6dfadc0ac6ba905818 (diff) |
openssl: support session resume with TLS 1.3
Session resumption information is not available immediately after a TLS 1.3
handshake. The client must wait until the server has sent a session ticket.
Use OpenSSL's "new session" callback to get the session information and put it
into curl's session cache. For TLS 1.3 sessions, this callback will be invoked
after the server has sent a session ticket.
The "new session" callback is invoked only if OpenSSL's session cache is
enabled, so enable it and use the "external storage" mode which lets curl manage
the contents of the session cache.
A pointer to the connection data and the sockindex are now saved as "SSL extra
data" to make them available to the callback.
This approach also works for old SSL/TLS versions and old OpenSSL versions.
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
Fixes #3202
Closes #3271
Diffstat (limited to 'tests/certs')
0 files changed, 0 insertions, 0 deletions