Start adding ticket keys (only key_name for now)
diff --git a/include/polarssl/ssl.h b/include/polarssl/ssl.h
index 5596cc1..b51cc87 100644
--- a/include/polarssl/ssl.h
+++ b/include/polarssl/ssl.h
@@ -328,6 +328,7 @@
typedef struct _ssl_context ssl_context;
typedef struct _ssl_transform ssl_transform;
typedef struct _ssl_handshake_params ssl_handshake_params;
+typedef struct _ssl_ticket_keys ssl_ticket_keys;
/*
* This structure is used for storing current session data.
@@ -445,6 +446,14 @@
int new_session_ticket; /*!< use NewSessionTicket? */
};
+/*
+ * Parameters needed to secure session tickets
+ */
+struct _ssl_ticket_keys
+{
+ unsigned char key_name[16]; /*!< name to quickly discard bad tickets */
+};
+
struct _ssl_context
{
/*
@@ -554,6 +563,11 @@
#endif /* POLARSSL_X509_PARSE_C */
/*
+ * Support for generating and checking session tickets
+ */
+ ssl_ticket_keys *ticket_keys; /*!< keys for ticket encryption */
+
+ /*
* User settings
*/
int endpoint; /*!< 0: client, 1: server */