]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: f0cea84) | patch
crypto/tls: rotate session ticket keys
authorKatie Hockman <katie@golang.org>
Tue, 28 Apr 2020 21:47:27 +0000 (17:47 -0400)
committerKatie Hockman <katie@golang.org>
Fri, 8 May 2020 02:00:35 +0000 (02:00 +0000)
commit43f2f5024b2a1438a642fe5340b929d3069099e9
tree71976d724c8ef5a3db5f160c76451af144a70167tree
parentf0cea848679b8f8cdc5f76e1b1e36ebb924a68f8commit | diff
crypto/tls: rotate session ticket keys

Automatically rotate session ticket keys for servers
that don't already have sessionTicketKeys and that
haven't called SetSessionTicketKeys.

Now, session ticket keys will be rotated every 24 hours
with a lifetime of 7 days. This adds a small performance
cost to existing clients that don't provide a session
ticket encrypted with a fresh enough session ticket key,
which would require a full handshake.

Updates #25256

Change-Id: I15b46af7a82aab9a108bceb706bbf66243a1510f
Reviewed-on: https://go-review.googlesource.com/c/go/+/230679
Run-TryBot: Katie Hockman <katie@golang.org>
TryBot-Result: Gobot Gobot <gobot@golang.org>
Reviewed-by: Filippo Valsorda <filippo@golang.org>
src/crypto/tls/common.go diff | blob | history
src/crypto/tls/conn.go diff | blob | history
src/crypto/tls/handshake_client_test.go diff | blob | history
src/crypto/tls/handshake_server.go diff | blob | history
src/crypto/tls/handshake_server_test.go diff | blob | history
src/crypto/tls/ticket.go diff | blob | history
Go GOST TLS 1.3