Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

NetSSL_OpenSSL: Support session resumption with TLSv1.3 #3880

Closed
obiltschnig opened this issue Nov 21, 2022 · 0 comments
Closed

NetSSL_OpenSSL: Support session resumption with TLSv1.3 #3880

obiltschnig opened this issue Nov 21, 2022 · 0 comments
Assignees
@obiltschnig
Labels
enhancement fixed
Milestone
Release 1.12.5

Comments

@obiltschnig
Copy link
Member

Some changes are required in NetSSL_OpenSSL to support session resumption with TLSv1.3.

Ideally, the code should be updated to use SSL_CTX_sess_set_new_cb().
If that is not feasible, a call to SSL_get1_session() after a successful two-way shutdown may give a resumable session. There should also be a way to check whether a session is resumable, by wrapping SSL_SESSION_is_resumable().

See https://wiki.openssl.org/index.php/TLS1.3#Sessions for a detailed explanation.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@obiltschnig obiltschnig

Labels
enhancement fixed
Projects
None yet
Milestone
Release 1.12.5
Development

No branches or pull requests
1 participant
@obiltschnig