crypto/tls: send two session tickets to TLS 1.3 clients
This commit is contained in:
Filippo Valsorda
Peter Wu
parent
44df381ccb
commit
9b94b65b7b
6
13.go
6
13.go
@ -24,6 +24,10 @@ import (
|
|||||||
"golang_org/x/crypto/curve25519"
|
"golang_org/x/crypto/curve25519"
|
||||||
)
|
)
|
||||||
|
|
||||||
|
// numSessionTickets is the number of different session tickets the
|
||||||
|
// server sends to a TLS 1.3 client, whom will use each only once.
|
||||||
|
const numSessionTickets = 2
|
||||||
|
|
||||||
func (hs *serverHandshakeState) doTLS13Handshake() error {
|
func (hs *serverHandshakeState) doTLS13Handshake() error {
|
||||||
config := hs.c.config
|
config := hs.c.config
|
||||||
c := hs.c
|
c := hs.c
|
||||||
@ -544,6 +548,7 @@ func (hs *serverHandshakeState) sendSessionTicket13() error {
|
|||||||
maxEarlyDataLen: c.config.Max0RTTDataSize,
|
maxEarlyDataLen: c.config.Max0RTTDataSize,
|
||||||
}
|
}
|
||||||
|
|
||||||
|
for i := 0; i < numSessionTickets; i++ {
|
||||||
ticket, err := c.encryptTicket(sessionState.marshal())
|
ticket, err := c.encryptTicket(sessionState.marshal())
|
||||||
if err != nil {
|
if err != nil {
|
||||||
c.sendAlert(alertInternalError)
|
c.sendAlert(alertInternalError)
|
||||||
@ -559,6 +564,7 @@ func (hs *serverHandshakeState) sendSessionTicket13() error {
|
|||||||
if _, err := c.writeRecord(recordTypeHandshake, ticketMsg.marshal()); err != nil {
|
if _, err := c.writeRecord(recordTypeHandshake, ticketMsg.marshal()); err != nil {
|
||||||
return err
|
return err
|
||||||
}
|
}
|
||||||
|
}
|
||||||
|
|
||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user