Imported Upstream version 1.1~hg20130323upstream/1.1_hg20130323

author: Michael Stapelberg <michael@stapelberg.de> 2013-03-23 11:28:53 +0100
committer: Michael Stapelberg <michael@stapelberg.de> 2013-03-23 11:28:53 +0100
commit: b39e15dde5ec7b96c15da9faf4ab5892501c1aae (patch)
tree: 718cede1f6ca97d082c6c40b7dc3f4f6148253c0 /src/pkg/crypto/tls/common.go
parent: 04b08da9af0c450d645ab7389d1467308cfc2db8 (diff)
download: golang-upstream/1.1_hg20130323.tar.gz
1 files changed, 18 insertions, 1 deletions
diff --git a/src/pkg/crypto/tls/common.go b/src/pkg/crypto/tls/common.go
index a888df762..f86c90de7 100644
--- a/src/pkg/crypto/tls/common.go
+++ b/src/pkg/crypto/tls/common.go
@@ -204,7 +204,24 @@ type Config struct {
 	// connections using that key are compromised.
 	SessionTicketKey [32]byte
 
-	serverInitOnce sync.Once
+	serverInitOnce sync.Once // guards calling (*Config).serverInit
+}
+
+func (c *Config) serverInit() {
+	if c.SessionTicketsDisabled {
+		return
+	}
+
+	// If the key has already been set then we have nothing to do.
+	for _, b := range c.SessionTicketKey {
+		if b != 0 {
+			return
+		}
+	}
+
+	if _, err := io.ReadFull(c.rand(), c.SessionTicketKey[:]); err != nil {
+		c.SessionTicketsDisabled = true
+	}
 }
 
 func (c *Config) rand() io.Reader {
author	Michael Stapelberg <michael@stapelberg.de>	2013-03-23 11:28:53 +0100
committer	Michael Stapelberg <michael@stapelberg.de>	2013-03-23 11:28:53 +0100
commit	b39e15dde5ec7b96c15da9faf4ab5892501c1aae (patch)
tree	718cede1f6ca97d082c6c40b7dc3f4f6148253c0 /src/pkg/crypto/tls/common.go
parent	04b08da9af0c450d645ab7389d1467308cfc2db8 (diff)
download	golang-upstream/1.1_hg20130323.tar.gz