Bug 63097 - TLS 1.3: Support "SSLOptions OptRenegotiate"
Summary: TLS 1.3: Support "SSLOptions OptRenegotiate"
Status: NEW
Alias: None
Product: Apache httpd-2
Classification: Unclassified
Component: mod_ssl (show other bugs)
Version: 2.5-HEAD
Hardware: PC Linux
: P2 normal (vote)
Target Milestone: ---
Assignee: Apache HTTPD Bugs Mailing List
Keywords: PatchAvailable
Depends on:
Reported: 2019-01-21 17:18 UTC by Michael Kaufmann
Modified: 2019-01-21 17:18 UTC (History)
0 users

Implement OptRenegotiate for TLS 1.3 (11.02 KB, patch)
2019-01-21 17:18 UTC, Michael Kaufmann
Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Michael Kaufmann 2019-01-21 17:18:32 UTC
Created attachment 36385 [details]
Implement OptRenegotiate for TLS 1.3

"SSLOptions OptRenegotiate" is currently not implemented for TLS 1.3. This option is important because it allows to reuse (resume) an SSL session together with the client certificate that the browser has already provided. So the browser does not need to send its client certificate again.

The attached patch implements this feature for TLS 1.3.