Artifacts Associated With Ticket 9afaf41635

1. Ticket change [9ee42ad0bc] (rid 4069) by anonymous on 2025-10-07 13:21:44:

   1. foundin initialized to: "1.8.0"
   2. icomment:

      When opening a server socket with `tls::socket -server`, every time a client connects, a new SSL_CTX structure is created for that connection.
      This means, if certificates are provided with `-certfile`, `-cafile` and `-keyfile`, they are opened and read for every connection, as can be seen with `strace`. How do I avoid this?
      
      - Using `-cert` and `-file` instead requires a manual conversion of PEM-files to DER (and there is no equivalent for `-cafile`).
      - `-model` cannot be supplied to `tls::socket`, but this would require a weird workaround to get a "model connection" anyway.
      
      Optimally `tls::socket -server` would cache the first SSL_CTX and use it for subsequent connections.
      

   3. login: "anonymous"
   4. mimetype: "text/x-markdown"
   5. severity initialized to: "Minor"
   6. status initialized to: "Open"
   7. title initialized to: "tls::socket, but with shared SSL_CTX"
   8. type initialized to: "Code Defect"

2. Ticket change [be0a4e64e6] (rid 4099) by bohagan on 2025-10-11 21:39:23:

   1. icomment:

      I'm working on options to do this since it's also needed for session resumption. I don't have a time frame on when it would be available yet.
      

   2. login: "bohagan"
   3. mimetype: "text/x-markdown"
   4. priority changed to: "Immediate"
   5. resolution changed to: "Open"