cURL / Mailing Lists / curl-library / Single Mail

curl-library

SSL Session ID reuse

From: Spindler, Tyler L <TLSpindler_at_integrysgroup.com>
Date: Tue, 9 Feb 2010 12:02:35 -0600

Hi all,

I have a need to reuse SSL Session IDs from program launch to program
launch (similar to running cURL twice)

The way the application is designed that uses libcurl is as follows:
- Application launches
- Application creates easy handle
- Application communicates via HTTPS with a website, maybe multiple
times, using client certificates for authentication
- Application closes
- Repeat (each time a SSL handshake and authentication occur, no SSL
session ID is reused)

I've scoured the forums and found a few references to reuse the session
id but it requires persistence of the application, which is not the way
this application is designed. The reason this is critical is because
the SSL handshake is about 50% of the data payload (HTTPS and the data
is the rest). Cellular service is being used so every reduction data
payload is important.

I've also looked at the TODO list and 2 things stick out to me. One is
the enhancement of the share interface to share connection cache and SSL
session ID's between easy handles. The other is the inclusion of
exporting / importing session ids.

Will either of these solutions make it into cURL in the near future?
Or, is there a way to reuse SSL session IDs between easy handles and
application restarts that I have not yet discovered?

Thanks in advance.

Tyler

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2010-02-09