[jira] [Commented] (TS-1146) RFC 5077 TLS Session tickets

James Peach (JIRA) Fri, 06 Dec 2013 09:32:39 -0800

    [ 
https://issues.apache.org/jira/browse/TS-1146?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13841450#comment-13841450
 ]


James Peach commented on TS-1146:
---------------------------------

Hmm, I think we need to call  {{SSL_CTX_set_tlsext_ticket_key_cb}} before 
{{SSL_CTX_set_ex_data}}, then there could never be a stale pointer on the 
{{SSL_CTX}}.

> RFC 5077 TLS Session tickets
> ----------------------------
>
>                 Key: TS-1146
>                 URL: https://issues.apache.org/jira/browse/TS-1146
>             Project: Traffic Server
>          Issue Type: Improvement
>          Components: SSL
>            Reporter: James Peach
>            Assignee: James Peach
>              Labels: A
>             Fix For: 5.0.0
>
>         Attachments: SSL_CTX_set_tlsext_ticket_key_cb.txt, 
> session_ticket.patch, session_ticket_review.patch
>
>
> For supporting RFC 5077 TLS Session tickets across a ATS cluster, all the 
> machines need to have the same server ticket.
> See https://github.com/apache/httpd rev 
> 967d943b93498233f0ec81a5b48706fdb6892dfd



--
This message was sent by Atlassian JIRA
(v6.1#6144)

[jira] [Commented] (TS-1146) RFC 5077 TLS Session tickets

Reply via email to