Changeset ae233c2 in mod_gnutls


Ignore:
Timestamp:
Jun 30, 2010, 9:09:56 PM (9 years ago)
Author:
Nikos Mavrogiannopoulos <nmav@…>
Branches:
debian/master, debian/stretch-backports, jessie-backports, master, msva, upstream
Children:
bca274d
Parents:
7b3e5de
Message:

Added option to turn on/off session tickets.

Files:
5 edited

Legend:

Unmodified
Added
Removed
  • NEWS

    r7b3e5de rae233c2  
    99  server to avoid using a session cache and still support
    1010  session resumption. This is at the cost of transporting
    11   session data during handshake.
     11  session data during handshake. New option
     12  GnuTLSSessionTickets [on|off]
    1213
    1314- Depend on gnutls 2.10.0 to force support for safe
  • include/mod_gnutls.h.in

    r7b3e5de rae233c2  
    110110    int client_verify_mode;
    111111    apr_time_t last_cache_check;
     112    int tickets; /* whether session tickets are allowed */
    112113} mgs_srvconf_rec;
    113114
     
    281282const char *mgs_set_priorities(cmd_parms * parms, void *dummy,
    282283                            const char *arg);
     284const char *mgs_set_tickets(cmd_parms * parms, void *dummy,
     285                            const char *arg);
    283286                           
    284287const char *mgs_set_require_section(cmd_parms *cmd,
  • src/gnutls_config.c

    r7b3e5de rae233c2  
    286286}
    287287
     288const char *mgs_set_tickets(cmd_parms * parms, void *dummy,
     289                                     const char *arg)
     290{
     291    mgs_srvconf_rec *sc =
     292        (mgs_srvconf_rec *) ap_get_module_config(parms->server->
     293                                                 module_config,
     294                                                 &gnutls_module);
     295
     296    sc->tickets = 0;
     297    if (strcasecmp("on", arg) == 0) {
     298        sc->tickets = 1;
     299    }
     300
     301    return NULL;
     302}
     303
    288304
    289305#ifdef ENABLE_SRP
  • src/gnutls_hooks.c

    r7b3e5de rae233c2  
    674674
    675675    gnutls_init(&ctxt->session, GNUTLS_SERVER);
    676     if (session_ticket_key.data != NULL)
     676    if (session_ticket_key.data != NULL && ctxt->sc->tickets != 0)
    677677        gnutls_session_ticket_enable_server(ctxt->session, &session_ticket_key);
    678678
  • src/mod_gnutls.c

    r7b3e5de rae233c2  
    122122                  RSRC_CONF,
    123123                  "Cache Configuration"),
     124    AP_INIT_TAKE1("GnuTLSSessionTickets", mgs_set_tickets,
     125                  NULL,
     126                  RSRC_CONF,
     127                  "Session Tickets Configuration"),
    124128    AP_INIT_RAW_ARGS("GnuTLSPriorities", mgs_set_priorities,
    125129                  NULL,
Note: See TracChangeset for help on using the changeset viewer.