[PATCH] session ticket support

Daiki Ueno ueno at unixuser.org
Sun Aug 9 08:48:29 CEST 2009

>>>>> In <87d478trxd.fsf at mocca.josefsson.org> 
>>>>>	Simon Josefsson <simon at josefsson.org> wrote:
> I changed my mind: rather than supporting different formats and crypto
> agility, the entire API would become:

OK, I see.

>   int gnutls_session_ticket_key_generate (gnutls_datum_t *key);

> The algorithm used are chosen by the library.  The app has to write its
> own import/export stuff.  What do you think?

Sounds nice to me.  Here is the new patch, with changes from the
previous version:

* Internal session state format is used instead of the RFC

* Fallback to full handshake if the decryption of tickets is failed.

* The key management interfaces are drawn togeter into a single function

* tests/session_ticket.c is merged into tests/resume.c.

* The doc-comments for the new interface functions are added.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: session-ticket-2009-08-09.diff.gz
Type: application/octet-stream
Size: 9907 bytes
Desc: not available
URL: </pipermail/attachments/20090809/841a18ef/attachment.obj>
-------------- next part --------------

Daiki Ueno

More information about the Gnutls-devel mailing list