RFR 8206929: Check session context for TLS session resumption

Adam Petcher adam.petcher at oracle.com
Thu Jul 12 15:50:04 UTC 2018


This change adds some checks for session resumption in TLS 1.3 to ensure 
that the resumed session is compatible with what is requested. 
Specifically, I'm adding checks for protocol version, cipher suite, 
client authentication, and signature schemes. There are also some minor 
whitespace formatting changes in PreSharedKeyExtension.java.

This is a JDK 11 change, so please review soon.

Webrev: http://cr.openjdk.java.net/~apetcher/8206929/webrev.00/
JBS: https://bugs.openjdk.java.net/browse/JDK-8206929




More information about the security-dev mailing list