[PATCH] session ticket support

Daiki Ueno ueno at unixuser.org
Sat Jul 25 13:01:55 CEST 2009


>>>>> In <4A6ACB0A.4030801 at gnutls.org> 
>>>>>	Nikos Mavrogiannopoulos <nmav at gnutls.org> wrote:
> >> - Have you checked this implementation against others?
> > 
> > Not yet.  I'll check it against OpenSSL this weekend.

>  Do you have any updates on that?

Yes - but there are some issues.  I have tested with modified
gnutls-cli/gnutl-serv capable of session ticket handling.

The combination of OpenSSL s_client and gnutls-serv seems OK, but
gnutls-cli and s_server cannot continue handshake.  I'm now
investigating what is going on.  Anyway, I attach the log files of:

$ openssl s_server -accept 10000 -CAfile x509-ca.pem \
  -key x509-server-key.pem -cert x509-server.pem -msg >& s_server.log

$ gnutls-cli --debug 10 -p 10000 --resume localhost >& gnutls-cli.log

-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: s_server.log
URL: </pipermail/attachments/20090725/49e73e4c/attachment.asc>
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: gnutls-cli.log
URL: </pipermail/attachments/20090725/49e73e4c/attachment.txt>
-------------- next part --------------

Regards,
-- 
Daiki Ueno


More information about the Gnutls-devel mailing list