From 593058e35e9043e6c41c6093b1c0435aa0e04786 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Manuel=20P=C3=A9gouri=C3=A9-Gonnard?= Date: Fri, 2 Aug 2013 14:55:46 +0200 Subject: [PATCH] Don't renew ticket when the current one is OK --- library/ssl_srv.c | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/library/ssl_srv.c b/library/ssl_srv.c index 5b421fc94..1059efc39 100644 --- a/library/ssl_srv.c +++ b/library/ssl_srv.c @@ -462,6 +462,11 @@ static int ssl_parse_session_ticket_ext( ssl_context *ssl, SSL_DEBUG_MSG( 3, ( "session successfully restored from ticket" ) ); + /* + * Don't send a new ticket after all, this one is OK + */ + ssl->handshake->new_session_ticket = 0; + /* * Keep the session ID sent by the client, since we MUST send it back to * inform him we're accepting the ticket (RFC 5077 section 3.4)