OpenSSL: Do not send out a TLS 1.3 session ticket if caching disabled
Do not provide TLS 1.3 session tickets if session caching is disabled. Signed-off-by: Jouni Malinen <quic_jouni@quicinc.com>
This commit is contained in:
parent
05406f7ae8
commit
decac7cd1e
1 changed files with 3 additions and 0 deletions
|
@ -1112,6 +1112,9 @@ void * tls_init(const struct tls_config *conf)
|
||||||
#endif
|
#endif
|
||||||
} else {
|
} else {
|
||||||
SSL_CTX_set_session_cache_mode(ssl, SSL_SESS_CACHE_OFF);
|
SSL_CTX_set_session_cache_mode(ssl, SSL_SESS_CACHE_OFF);
|
||||||
|
#if OPENSSL_VERSION_NUMBER >= 0x10101000L
|
||||||
|
SSL_CTX_set_num_tickets(ssl, 0);
|
||||||
|
#endif
|
||||||
}
|
}
|
||||||
|
|
||||||
if (tls_ex_idx_session < 0) {
|
if (tls_ex_idx_session < 0) {
|
||||||
|
|
Loading…
Reference in a new issue