From: Ryan <>
Date: Tue, 24 Jun 2025 23:28:05 +0000 (-0500)
Subject: Check privkey and tag to allow session resumption
X-Git-Url: https://git.the-white-hart.net/?a=commitdiff_plain;h=75e2571215b7025a6c155264a22fbca7226dc705;p=gemini%2Fcbs-server.git

Check privkey and tag to allow session resumption
---

diff --git a/cbs-srv.py b/cbs-srv.py
index 2a0fd2e..be2bb15 100755
--- a/cbs-srv.py
+++ b/cbs-srv.py
@@ -207,8 +207,12 @@ def main():
     # Set up the TLS server that blindly accepts all client certs.
     ctxt = SSL.Context(SSL.TLS_SERVER_METHOD)
     ctxt.set_verify(SSL.VERIFY_PEER, accept_client_cert)
+    ctxt.set_session_cache_mode(SSL.SESS_CACHE_SERVER)
+    ctxt.set_session_id(b'CornedBeefSandwich')
+
     ctxt.use_certificate_file(conf['cert'])
     ctxt.use_privatekey_file(conf['pkey'])
+    ctxt.check_privatekey()
 
     with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as sock:
         sock.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)