From 00282de2a520c17fda9c3e194815fa3c6a00e7b3 Mon Sep 17 00:00:00 2001
From: Rico Huijbers <rix0rrr@gmail.com>
Date: Wed, 13 Apr 2016 21:23:05 +0200
Subject: Add ability to set session ID context on an SSL context

This is necessary to make authentication with client certificates work
without session restarts.
---
 openssl/src/ssl/mod.rs | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

(limited to 'openssl/src/ssl/mod.rs')

diff --git a/openssl/src/ssl/mod.rs b/openssl/src/ssl/mod.rs
index 7b5cf492..71a6ccda 100644
--- a/openssl/src/ssl/mod.rs
+++ b/openssl/src/ssl/mod.rs
@@ -621,6 +621,20 @@ impl SslContext {
         })
     }
 
+    /// Set the context identifier for sessions
+    ///
+    /// This value identifies the server's session cache to a clients, telling them when they're
+    /// able to reuse sessions. Should be set to a unique value per server, unless multiple servers
+    /// share a session cache.
+    ///
+    /// This value should be set when using client certificates, or each request will fail
+    /// handshake and need to be restarted.
+    pub fn set_session_id_context(&mut self, sid_ctx: &[u8]) -> Result<(), SslError> {
+        wrap_ssl_result(unsafe {
+            ffi::SSL_CTX_set_session_id_context(self.ctx, sid_ctx.as_ptr(), sid_ctx.len() as u32)
+        })
+    }
+
     /// Specifies the file that contains certificate
     pub fn set_certificate_file<P: AsRef<Path>>(&mut self,
                                                 file: P,
-- 
cgit v1.2.3