Safe Haskell | Safe-Inferred |
---|---|
Language | Haskell2010 |
A manager for TLS 1.2/1.3 session ticket.
Tracking client hello is not implemented yet.
So, if this is used for TLS 1.3 0-RTT,
replay attack is possible.
If your application data in 0-RTT changes the status of server side,
use SessionManager
instead.
A dedicated thread is running repeatedly to replece secret keys. So, energy saving is not achieved.
Synopsis
- newSessionTicketManager :: Config -> IO SessionManager
- data Config
- defaultConfig :: Config
- ticketLifetime :: Config -> Int
- secretKeyInterval :: Config -> Int
Documentation
newSessionTicketManager :: Config -> IO SessionManager Source #
Creating a session ticket manager.
defaultConfig :: Config Source #
ticketLifetime: 2 hours (7200 seconds), secretKeyInterval: 30 minutes (1800 seconds)
ticketLifetime :: Config -> Int Source #
Ticket lifetime in seconds.
secretKeyInterval :: Config -> Int Source #