[openssl-dev] TLS session ticket extension problem when using the ssl23_client_hello method
Ian McFadries (imcfadri)
imcfadri at cisco.com
Tue Aug 4 21:03:59 UTC 2015
Sorry for the delayed response, I was away for a week and was able to test the fix today.
The fix did resolve the session ticket issue that I was encountering. However, now I get an error when I am not using the session tickets under the following conditions. I am continuing to investigate.
Create an SSL Session using the context that negotiates the highest available version
Client hello requests TLS 1.2
Server responds with server hello using TLS 1.0
Complete handshake with no problems
Disconnect session
Start new session which attempts a fast session resumption
Client sends Alert 70 (SSL_AD_PROTOCOLVERSION) because SSL struct version contains version 0x303 but message after first message contains version 0x301
More information about the openssl-dev
mailing list