RFR, JDK-8212885: TLS 1.3 resumed session does not retain peer certificate chain
Jamil Nimeh
jamil.j.nimeh at oracle.com
Tue Nov 6 07:51:43 UTC 2018
Hello all,
This fixes an issue where TLS 1.3 resumed sessions were not carrying
forward many of the parameters from the parent session, namely the peer
certificates, but also the local certificates and a few other
SSLSessionImpl fields. This also moves the fix from an earlier, related
issue with SNI names (JDK-8211806) into this new solution.
JBS: https://bugs.openjdk.java.net/browse/JDK-8212885
Webrev: http://cr.openjdk.java.net/~jnimeh/reviews/8212885/webrev.01
Thanks,
--Jamil
More information about the security-dev
mailing list