Safeguarding the past, present and future of RISC OS for everyone
Account
News | Downloads | Bugs | Bounties | Forums | Library
Forums → Bugs →

AcornSSL does not support resume sessions correctly

Subscribe to AcornSSL does not support resume sessions correctly 1 post, 1 voice

 
Apr 21, 2020 4:42pm
Avatar Dave Higton (1515) 3526 posts

See the topic “FTPc 1.55” in Announcements.

The AcornSSL module, when it starts a new secure session or upgrades an existing plain connection to secure, sends an empty SessionTicket extension. This indicates to the server that it supports RFC 5077, but it doesn’t store the returned SessionTicket or pass it on to the client for use when a new session is opened (e.g. the data connection of a secure FTP session where the secure control session already exists, by definition).

The simplest solution is not to send an empty SessionTicket extension.

Ultimately the module should support RFC 5077, probably with help from the module’s client.

Reply

To post replies, please first log in.

Forums → Bugs →

Search forums

Social

Follow us on and

ROOL Store

Buy RISC OS Open merchandise here, including SD cards for Raspberry Pi and more.

Donate! Why?

Help ROOL make things happen – please consider donating!

RISC OS IPR

RISC OS is an Open Source operating system owned by RISC OS Developments Ltd and licensed primarily under the Apache 2.0 license.

Description

Bug discussions that aren’t covered by the bugs database.

Voices

  • Dave Higton (1515)

Options

  • Forums
  • Login
Contact Us  |  About Us

The RISC OS Open Beast theme is based on Beast's default layout
Site design © RISC OS Open Limited 2024 except where indicated

Hosted by Arachsys

Powered by Beast © 2006 Josh Goebel and Rick Olson
This site runs on Rails