Download
Browse source Changelog
Documentation
Project   Bug Bounty   Help us   Known bugs   TODO Protocols   CA bundle   HTTP Cookies   HTTP/2   SSL Certs Releases   Security   Version numbers   Vulnerabilities curl tool   man page   Tutorial   HTTP scripting Who and Why
libcurl
ABI API Competitors Examples Features Mailing list Related libs Using libcurl Tutorial Testimonials
Get Help
curl-library curl-users Mailing lists Book: Everything curl Video presentations Report a bug Paid support
Development
Autobuilds Code Style Contribute Deprecate Internals Release Notes Release Procedure Roadmap Run Tests Security Process Specifications Test curl
News
Changelog Release table
curl / Mailing Lists / curl-library / Single Mail
Buy commercial curl support from WolfSSL. We help you work out your issues, debug your libcurl applications, use the API, port to new platforms, add new features and more. With a team lead by the curl founder himself.

Re: Question about SSL Session Tickets

From: Daniel Stenberg via curl-library <curl-library_at_cool.haxx.se>
Date: Mon, 19 Aug 2019 14:50:03 +0200 (CEST)

On Mon, 19 Aug 2019, Joachim Mammele via curl-library wrote:

> According to
> https://vincent.bernat.ch/en/blog/2011-ssl-session-reuse-rfc5077 it is
> necessary to send and empty "session_ticket" extension in the Client Hello
> message.
>
> Is this possible to do with CURL?

I don't think it is.

> I saw that there are alrady some issues related to this topic:
> https://github.com/curl/curl/pull/3060 related to Session Tickets, is this
> in the master now? (it seems that this is only for NSS but not for OpenSSL?)

It didn't get merged. It was just closed with "Abandoned. Closing." in
February 13 2019.

> https://github.com/curl/curl/pull/2220 This pull-request didn't make it
> into master, did it?

Nope, that too was abandoned and subsequently closed.

Clearly some people have considered this subject before but it seems nobody
yet could get the work all the way through to get merged!

> Is my question related to the following TODO?
> https://curl.haxx.se/docs/todo.html#Cache_share_OpenSSL_contexts

That TODO isn't related to tickets at all, but mentions a potential way to
share "contexts" across handles as a means of speeding up multiple TLS-using
connections. 

-- 
  / daniel.haxx.se | Get the best commercial curl support there is - from me
                   | Private help, bug fixes, support, ports, new features
                   | https://www.wolfssl.com/contact/
-------------------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
Etiquette:   https://curl.haxx.se/mail/etiquette.html
Received on 2019-08-19