Send and receive the ticket_nonce field in a NewSessionTicket

    uint64_t flags;

    uint32_t max_early_data;

    ASN1_OCTET_STRING *alpn_selected;

    ASN1_OCTET_STRING *tick_nonce;

} SSL_SESSION_ASN1;

ASN1_SEQUENCE(SSL_SESSION_ASN1) = {

    ASN1_EXP_OPT_EMBED(SSL_SESSION_ASN1, flags, ZUINT64, 13),

    ASN1_EXP_OPT_EMBED(SSL_SESSION_ASN1, tlsext_tick_age_add, ZUINT32, 14),

    ASN1_EXP_OPT_EMBED(SSL_SESSION_ASN1, max_early_data, ZUINT32, 15),

    ASN1_EXP_OPT(SSL_SESSION_ASN1, alpn_selected, ASN1_OCTET_STRING, 16)

    ASN1_EXP_OPT(SSL_SESSION_ASN1, alpn_selected, ASN1_OCTET_STRING, 16),

    ASN1_EXP_OPT(SSL_SESSION_ASN1, tick_nonce, ASN1_OCTET_STRING, 17)

} static_ASN1_SEQUENCE_END(SSL_SESSION_ASN1)

IMPLEMENT_STATIC_ASN1_ENCODE_FUNCTIONS(SSL_SESSION_ASN1)

    ASN1_OCTET_STRING psk_identity, psk_identity_hint;

#endif

    ASN1_OCTET_STRING alpn_selected;

    ASN1_OCTET_STRING tick_nonce;

    long l;

        ssl_session_oinit(&as.alpn_selected, &alpn_selected,

                          in->ext.alpn_selected, in->ext.alpn_selected_len);

    if (in->ext.tick_nonce == NULL)

        as.tick_nonce = NULL;

    else

        ssl_session_oinit(&as.tick_nonce, &tick_nonce,

                          in->ext.tick_nonce, in->ext.tick_nonce_len);

    return i2d_SSL_SESSION_ASN1(&as, pp);

}

        ret->ext.alpn_selected_len = 0;

    }

    if (as->tick_nonce != NULL) {

        ret->ext.tick_nonce = as->tick_nonce->data;

        ret->ext.tick_nonce_len = as->tick_nonce->length;

        as->tick_nonce->data = NULL;

    } else {

        ret->ext.tick_nonce = NULL;

        ret->ext.tick_nonce_len = 0;

    }

    M_ASN1_free_of(as, SSL_SESSION_ASN1);

    if ((a != NULL) && (*a == NULL))

        /* Session lifetime hint in seconds */

        unsigned long tick_lifetime_hint;

        uint32_t tick_age_add;

        unsigned char *tick_nonce;

        size_t tick_nonce_len;

        int tick_identity;

        /* Max number of bytes that can be sent as early data */

        uint32_t max_early_data;

    dest->peer = NULL;

    memset(&dest->ex_data, 0, sizeof(dest->ex_data));

    dest->ext.tick_nonce = NULL;

    /* We deliberately don't copy the prev and next pointers */

    dest->prev = NULL;

    dest->next = NULL;

        }

    }

    if (src->ext.tick_nonce != NULL) {

        dest->ext.tick_nonce = OPENSSL_memdup(src->ext.tick_nonce,

                                              src->ext.tick_nonce_len);

        if (dest->ext.tick_nonce == NULL)

            goto err;

    }

#ifndef OPENSSL_NO_SRP

    if (src->srp_username) {

        dest->srp_username = OPENSSL_strdup(src->srp_username);

    OPENSSL_free(ss->srp_username);

#endif

    OPENSSL_free(ss->ext.alpn_selected);

    OPENSSL_free(ss->ext.tick_nonce);

    CRYPTO_THREAD_lock_free(ss->lock);

    OPENSSL_clear_free(ss, sizeof(*ss));

}

    unsigned long ticket_lifetime_hint, age_add = 0;

    unsigned int sess_len;

    RAW_EXTENSION *exts = NULL;

    PACKET nonce;

    if (!PACKET_get_net_4(pkt, &ticket_lifetime_hint)

        || (SSL_IS_TLS13(s) && !PACKET_get_net_4(pkt, &age_add))

        || (SSL_IS_TLS13(s)

            && (!PACKET_get_net_4(pkt, &age_add)

                || !PACKET_get_length_prefixed_1(pkt, &nonce)

                || PACKET_remaining(&nonce) == 0

                || !PACKET_memdup(&nonce, &s->session->ext.tick_nonce,

                                  &s->session->ext.tick_nonce_len)))

        || !PACKET_get_net_2(pkt, &ticklen)

        || (!SSL_IS_TLS13(s) && PACKET_remaining(pkt) != ticklen)

        || (SSL_IS_TLS13(s)

        if (RAND_bytes(age_add_u.age_add_c, sizeof(age_add_u)) <= 0)

            goto err;

        s->session->ext.tick_age_add = age_add_u.age_add;

       /*

        * ticket_nonce is set to a single 0 byte because we only ever send a

        * single ticket per connection. IMPORTANT: If we ever support multiple

        * tickets per connection then this will need to be changed.

        */

        OPENSSL_free(s->session->ext.tick_nonce);

        s->session->ext.tick_nonce = OPENSSL_zalloc(sizeof(char));

        if (s->session->ext.tick_nonce == NULL) {

            SSLerr(SSL_F_TLS_CONSTRUCT_NEW_SESSION_TICKET,

                   ERR_R_MALLOC_FAILURE);

            goto err;

        }

        s->session->ext.tick_nonce_len = 1;

        s->session->time = (long)time(NULL);

        if (s->s3->alpn_selected != NULL) {

            OPENSSL_free(s->session->ext.alpn_selected);

                               (s->hit && !SSL_IS_TLS13(s))

                               ? 0 : s->session->timeout)

            || (SSL_IS_TLS13(s)

                && !WPACKET_put_bytes_u32(pkt, age_add_u.age_add))

                && (!WPACKET_put_bytes_u32(pkt, age_add_u.age_add)

                       /* ticket_nonce */

                    || !WPACKET_start_sub_packet_u8(pkt)

                    || !WPACKET_put_bytes_u8(pkt, 0)

                    || !WPACKET_close(pkt)))

               /* Now the actual ticket data */

            || !WPACKET_start_sub_packet_u16(pkt)

            || !WPACKET_get_total_written(pkt, &macoffset)