63097 – TLS 1.3: Support "SSLOptions OptRenegotiate"

Bug 63097 - TLS 1.3: Support "SSLOptions OptRenegotiate"

Summary: TLS 1.3: Support "SSLOptions OptRenegotiate"

Status:	NEW

Alias:	None

Product:	Apache httpd-2
Classification:	Unclassified
Component:	mod_ssl (show other bugs)
Version:	2.5-HEAD
Hardware:	PC Linux

Importance:	P2 normal (vote)
Target Milestone:	---
Assignee:	Apache HTTPD Bugs Mailing List

URL:
Keywords:	PatchAvailable

Depends on:
Blocks:

Reported:	2019-01-21 17:18 UTC by Michael Kaufmann
Modified:	2019-01-21 17:18 UTC (History)
CC List:	0 users

Attachments
Implement OptRenegotiate for TLS 1.3 (11.02 KB, patch) 2019-01-21 17:18 UTC, Michael Kaufmann	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Michael Kaufmann 2019-01-21 17:18:32 UTC

Created attachment 36385 [details]
Implement OptRenegotiate for TLS 1.3

"SSLOptions OptRenegotiate" is currently not implemented for TLS 1.3. This option is important because it allows to reuse (resume) an SSL session together with the client certificate that the browser has already provided. So the browser does not need to send its client certificate again.

The attached patch implements this feature for TLS 1.3.