diff options
| author | Ander Juaristi <a@juaristi.eus> | 2018-04-16 17:13:47 +0200 |
|---|---|---|
| committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2018-05-26 04:12:04 +0000 |
| commit | 4b5678716f506d46da8dabdd343b268a5b9dd9b4 (patch) | |
| tree | f7fcb5c04a3848437254676aeda456d23f79ad87 /src | |
| parent | aed3ac3a2dd976bbdef4705d7caa3db2b9239c79 (diff) | |
| download | gnutls-4b5678716f506d46da8dabdd343b268a5b9dd9b4.tar.gz | |
TLS 1.3: Introduced TLS 1.3 session resumption
This introduces session resumption under TLS 1.3. For that,
it enables the psk_ke_modes extension when we enable session
tickets. It enables sending session tickets in addition to
PSK usernames. The detection of resumption vs pure PSK is done by
comparing the indexes sent with the index received by the server.
TLS 1.3 session tickets are always sent to the peer unless the
GNUTLS_NO_TICKETS is specified.
Resolves #290
Signed-off-by: Ander Juaristi <a@juaristi.eus>
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
Signed-off-by: Daiki Ueno <dueno@redhat.com>
Diffstat (limited to 'src')
| -rw-r--r-- | src/serv.c | 4 |
1 files changed, 0 insertions, 4 deletions
diff --git a/src/serv.c b/src/serv.c index ab1a6e6c65..34996d1792 100644 --- a/src/serv.c +++ b/src/serv.c @@ -398,11 +398,9 @@ gnutls_session_t initialize_session(int dtls) gnutls_db_set_ptr(session, NULL); } -#ifdef ENABLE_SESSION_TICKETS if (noticket == 0) gnutls_session_ticket_enable_server(session, &session_ticket_key); -#endif if (sni_hostname != NULL) gnutls_handshake_set_post_client_hello_function(session, @@ -1220,10 +1218,8 @@ int main(int argc, char **argv) } #endif -#ifdef ENABLE_SESSION_TICKETS if (noticket == 0) gnutls_session_ticket_key_generate(&session_ticket_key); -#endif if (HAVE_OPT(MTU)) mtu = OPT_VALUE_MTU; |