Go: proposal: crypto/tls: implement Session IDs resumption

Created on 2 May 2018  路  6Comments  路  Source: golang/go

What version of Go are you using (go version)?

go version go1.10 linux/amd64

Does this issue reproduce with the latest release?

Yes

What did you do?

Crypto/tls today only implements session ticket resumption described in RFC 5077. Per https://en.wikipedia.org/wiki/Comparison_of_TLS_implementations#Extensions JSSE does not support session ticket resumption, so I'm looking for a way to speed up the TLS handshake between Golang and Java applications

https://tools.ietf.org/html/rfc5246 (The Transport Layer Security (TLS) Protocol Version 1.2) describes the session resumption, also useful to speed up the TLS handshake. It is implemented by OpenSSL and JSSE. Implementation should have a public interface similar to the OpenSSL's SSL_CTX_add_session() to inject the sessions in the server cache.

Proposal Proposal-Crypto Proposal-Hold
Source
picture pvoicu
👍14

Most helpful comment

This is terrifying: it looks like there are FTP servers that use session reuse as an authentication method across control and data connections, and some of them don't support session tickets, so need session IDs. https://github.com/secsy/goftp/issues/49

https://scarybeastsecurity.blogspot.com/2009/02/vsftpd-210-released.html

picture FiloSottile on 12 Feb 2020
😄3 👍2

All 6 comments

TLS 1.3 might also need server side state to handle 0-RTT anti-replay.

If that happens, 1.2 Session IDs can be implemented along with that.

FiloSottile picture FiloSottile on 4 May 2018
👍5

I have an implementation for this, although only for the server side because that is what I needed.
I would be glad to contribute.

pvoicu picture pvoicu on 20 Jul 2018
👍3

We have encountered (probably bad) embedded TLS client implementations that refuse to talk to Go TLS server because session ID resumption is not implemented, so we had to insert NGINX in front to make it work.

This would be a welcome addition.

a13xb picture a13xb on 23 Apr 2019

This would also be needed in order to support TLS resumption (at all) for iOS as based on my tests, this platform does not send session tickets (neither Safari nor apps), and there is no obvious way to unable it from NSURLSession.

rs picture rs on 2 Oct 2019

java 13 implements RFC 5077
https://bugs.java.com/bugdatabase/view_bug.do?bug_id=JDK-8211018
you have to enable it with:
-Djdk.tls.client.enableSessionTicketExtension=true
-Djdk.tls.server.enableSessionTicketExtension=true

agdolla picture agdolla on 23 Dec 2019

This is terrifying: it looks like there are FTP servers that use session reuse as an authentication method across control and data connections, and some of them don't support session tickets, so need session IDs. https://github.com/secsy/goftp/issues/49

https://scarybeastsecurity.blogspot.com/2009/02/vsftpd-210-released.html

FiloSottile picture FiloSottile on 12 Feb 2020
😄3 👍2
Was this page helpful?
0 / 5 - 0 ratings

Related issues

longzhizhi picture longzhizhi  路  3Comments
enoodle picture enoodle  路  3Comments
mingrammer picture mingrammer  路  3Comments
michaelsafyan picture michaelsafyan  路  3Comments
jayhuang75 picture jayhuang75  路  3Comments