RFR 8206929: Check session context for TLS session resumption
Adam Petcher
adam.petcher at oracle.com
Thu Jul 12 15:50:04 UTC 2018
This change adds some checks for session resumption in TLS 1.3 to ensure
that the resumed session is compatible with what is requested.
Specifically, I'm adding checks for protocol version, cipher suite,
client authentication, and signature schemes. There are also some minor
whitespace formatting changes in PreSharedKeyExtension.java.
This is a JDK 11 change, so please review soon.
Webrev: http://cr.openjdk.java.net/~apetcher/8206929/webrev.00/
JBS: https://bugs.openjdk.java.net/browse/JDK-8206929
More information about the security-dev
mailing list