git.ipfire.org Git - thirdparty/openssl.git/commit

author	David Benjamin <davidben@google.com>
	Sun, 6 Mar 2016 00:35:52 +0000 (19:35 -0500)
committer	Matt Caswell <matt@openssl.org>
	Fri, 13 May 2016 12:04:46 +0000 (13:04 +0100)
commit	c45d6b2b0dc9a0b191fc3dcaad8035addd1589e6
tree	9f6deff2ed67450da7ea220275052929d108eb06	tree \| snapshot
parent	afdd82fb567dbcd003108eb5faab82998d9fbf4d	commit \| diff

The NewSessionTicket message is not optional.

Per RFC 4507, section 3.3:

   This message [NewSessionTicket] MUST be sent if the
   server included a SessionTicket extension in the ServerHello.  This
   message MUST NOT be sent if the server did not include a
   SessionTicket extension in the ServerHello.

The presence of the NewSessionTicket message should be determined
entirely from the ServerHello without probing.

RT#4389

Reviewed-by: Emilia Käsper <emilia@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>