From e14661aa9345073f8b194fee6ab06773579a743d Mon Sep 17 00:00:00 2001
From: Greg Greenway <ggreenway@users.noreply.github.com>
Date: Tue, 3 Oct 2017 12:56:41 -0700
Subject: [PATCH] Add configuration for TLS session ticket encryption key, to
 allow (#178)

session resumption across hot-restart or between multiple envoy
instances.

Signed-off-by: Greg Greenway ggreenway@apple.com
---
 api/sds.proto | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/api/sds.proto b/api/sds.proto
index f4773bea..687db60a 100644
--- a/api/sds.proto
+++ b/api/sds.proto
@@ -59,6 +59,16 @@ message TlsCertificate {
   repeated DataSource signed_certificate_timestamp = 5;
 }
 
+message TlsSessionTicketKeys {
+  // Keys to encrypt/decrypt TLS session tickets for session resumption.  The first
+  // key is used to encrypt new tickets that are created.  All keys are candidates
+  // for decrypting received tickets.
+  //
+  // Each key must be exactly 80 bytes long, containing cryptographically-secure random
+  // data.  For example, the output of "openssl rand 80".
+  repeated DataSource keys = 1;
+}
+
 message CertificateValidationContext {
   // TLS certificate data containing certificate authority certificates to use
   // in verifying a presented certificate. If not specified and a certificate is
@@ -130,6 +140,11 @@ message DownstreamTlsContext {
 
   // If specified, Envoy will reject connections without a valid and matching SNI.
   google.protobuf.BoolValue require_sni = 3;
+
+  oneof session_ticket_keys {
+    TlsSessionTicketKeys keys = 4;
+    SdsSecretConfig config = 5;
+  }
 }
 
 message SdsSecretConfig {
@@ -145,5 +160,6 @@ message Secret {
   string name = 1;
   oneof type {
     TlsCertificate tls_certificate = 2;
+    TlsSessionTicketKeys session_ticket_keys = 3;
   }
 }