Complete client support for session tickets

commit: 6377e41ef56f8303ccc58a4ca82f3bf99495018a [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Wed Jul 31 16:31:33 2013 +0200
committer: Paul Bakker <p.j.bakker@polarssl.org> Wed Aug 14 14:08:04 2013 +0200
tree: d2fb1ffade65987de9aec8e2a04205aaca98514f
parent: a5cc6025e76ad3004b9ceccc38b783a54d161ca2 [diff] [blame]
diff --git a/library/ssl_cli.c b/library/ssl_cli.c
index f572cab..9b64392 100644
--- a/library/ssl_cli.c
+++ b/library/ssl_cli.c

@@ -431,7 +431,25 @@
 
     if( ssl->renegotiation != SSL_INITIAL_HANDSHAKE || n < 16 || n > 32 ||
         ssl->handshake->resume == 0 )
+    {
         n = 0;
+    }
+
+    /*
+     * RFC 5077 section 3.4: "When presenting a ticket, the client MAY
+     * generate and include a Session ID in the TLS ClientHello."
+     */
+    if( ssl->renegotiation == SSL_INITIAL_HANDSHAKE &&
+        ssl->session_negotiate->ticket != NULL &&
+        ssl->session_negotiate->ticket_len != 0 )
+    {
+        ret = ssl->f_rng( ssl->p_rng, ssl->session_negotiate->id, 32 );
+
+        if( ret != 0 )
+            return( ret );
+
+        ssl->session_negotiate->length = n = 32;
+    }
 
     *p++ = (unsigned char) n;
commit	6377e41ef56f8303ccc58a4ca82f3bf99495018a	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Wed Jul 31 16:31:33 2013 +0200
committer	Paul Bakker <p.j.bakker@polarssl.org>	Wed Aug 14 14:08:04 2013 +0200
tree	d2fb1ffade65987de9aec8e2a04205aaca98514f
parent	a5cc6025e76ad3004b9ceccc38b783a54d161ca2 [diff] [blame]