mbedtls: Add support for a session cache

This allows the client to reuse the settings from a previous session and no full key exchange is needed. The partially key exchange takes less than 0.1 seconds compared to over a second needed for a full key exchange. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
author: Hauke Mehrtens <hauke@hauke-m.de> 2018-05-21 14:02:44 +0200
committer: John Crispin <john@phrozen.org> 2018-05-22 20:37:16 +0200
commit: e8a14691313d72bac27f9060bc536cf2ad23256b (patch)
tree: fe743f143882b016715be4f6a58bab8154d66fc7 /ustream-mbedtls.h
parent: 527e7002d0429465bd49c0c0d416ef22fbf5ae86 (diff)
download: ustream-ssl-e8a14691313d72bac27f9060bc536cf2ad23256b.tar.gz
1 files changed, 7 insertions, 0 deletions
diff --git a/ustream-mbedtls.h b/ustream-mbedtls.h
index a489867..70bd4ea 100644
--- a/ustream-mbedtls.h
+++ b/ustream-mbedtls.h
@@ -28,11 +28,18 @@
 #include <mbedtls/version.h>
 #include <mbedtls/entropy.h>
 
+#if defined(MBEDTLS_SSL_CACHE_C)
+#include <mbedtls/ssl_cache.h>
+#endif
+
 struct ustream_ssl_ctx {
 	mbedtls_ssl_config conf;
 	mbedtls_pk_context key;
 	mbedtls_x509_crt ca_cert;
 	mbedtls_x509_crt cert;
+#if defined(MBEDTLS_SSL_CACHE_C)
+	mbedtls_ssl_cache_context cache;
+#endif
 	bool server;
 };
author	Hauke Mehrtens <hauke@hauke-m.de>	2018-05-21 14:02:44 +0200
committer	John Crispin <john@phrozen.org>	2018-05-22 20:37:16 +0200
commit	e8a14691313d72bac27f9060bc536cf2ad23256b (patch)
tree	fe743f143882b016715be4f6a58bab8154d66fc7 /ustream-mbedtls.h
parent	527e7002d0429465bd49c0c0d416ef22fbf5ae86 (diff)
download	ustream-ssl-e8a14691313d72bac27f9060bc536cf2ad23256b.tar.gz