crypto/tls: send two session tickets to TLS 1.3 clients

2017-01-30 18:03:46 +00:00 · 2017-01-30 18:03:46 +00:00 · 9b94b65b7b
commit 9b94b65b7b
parent 44df381ccb
1 changed files with 20 additions and 14 deletions
--- a/13.go
+++ b/13.go
@ -24,6 +24,10 @@ import (
 	"golang_org/x/crypto/curve25519"
 )

+// numSessionTickets is the number of different session tickets the
+// server sends to a TLS 1.3 client, whom will use each only once.
+const numSessionTickets = 2
+
 func (hs *serverHandshakeState) doTLS13Handshake() error {
 	config := hs.c.config
 	c := hs.c
@ -544,20 +548,22 @@ func (hs *serverHandshakeState) sendSessionTicket13() error {
 		maxEarlyDataLen:  c.config.Max0RTTDataSize,
 	}

-	ticket, err := c.encryptTicket(sessionState.marshal())
-	if err != nil {
-		c.sendAlert(alertInternalError)
-		return err
-	}
-	ticketMsg := &newSessionTicketMsg13{
-		lifetime:           24 * 3600, // TODO(filippo)
-		maxEarlyDataLength: c.config.Max0RTTDataSize,
-		withEarlyDataInfo:  c.config.Max0RTTDataSize > 0,
-		ageAdd:             sessionState.ageAdd,
-		ticket:             ticket,
-	}
-	if _, err := c.writeRecord(recordTypeHandshake, ticketMsg.marshal()); err != nil {
-		return err
+	for i := 0; i < numSessionTickets; i++ {
+		ticket, err := c.encryptTicket(sessionState.marshal())
+		if err != nil {
+			c.sendAlert(alertInternalError)
+			return err
+		}
+		ticketMsg := &newSessionTicketMsg13{
+			lifetime:           24 * 3600, // TODO(filippo)
+			maxEarlyDataLength: c.config.Max0RTTDataSize,
+			withEarlyDataInfo:  c.config.Max0RTTDataSize > 0,
+			ageAdd:             sessionState.ageAdd,
+			ticket:             ticket,
+		}
+		if _, err := c.writeRecord(recordTypeHandshake, ticketMsg.marshal()); err != nil {
+			return err
+		}
 	}

 	return nil