Commit ab08d826 authored by Michael Kaufmann's avatar Michael Kaufmann
Browse files

mbedtls: disable TLS session tickets 

SSL session reuse with TLS session tickets is not supported yet.
Use SSL session IDs instead.

See https://github.com/curl/curl/issues/1109
parent 511674ab

lib/vtls/mbedtls.c

+5 −0
Original line number Diff line number Diff line
@@ -373,6 +373,11 @@ mbed_connect_step1(struct connectdata *conn, 
  mbedtls_ssl_conf_ciphersuites(&connssl->config,

                                mbedtls_ssl_list_ciphersuites());



#if defined(MBEDTLS_SSL_SESSION_TICKETS)

  mbedtls_ssl_conf_session_tickets(&connssl->config,

                                   MBEDTLS_SSL_SESSION_TICKETS_DISABLED);

#endif



  /* Check if there's a cached ID we can/should use here! */

  if(data->set.general_ssl.sessionid) {

    void *old_session = NULL;