[RFR] 8242008: SSLSession inconsistencies

Jamil Nimeh jamil.j.nimeh at oracle.com
Wed Apr 15 05:38:43 UTC 2020


Hi Tony, this looks good to me.

--Jamil

On 4/8/2020 1:18 PM, Anthony Scarpino wrote:
> Hi,
>
> I'd like a review of the following change.  There wre inconsistencies 
> with SSLSession and session caching that needed to be fixed.  They are:
> - With stateless resumption, SSLSession.getSessionContext() would 
> return null.
> - TLS 1.3 w/ session cache, the initial session was being added to the 
> cache unnecessarily.
> - With stateless resumption, SSLSession getPeerHost() could return 
> corrupted.
>
> A test is included for getSessionContext
>
> https://cr.openjdk.java.net/~ascarpino/8242008/webrev.01/
>
> thanks
>
> Tony


More information about the security-dev mailing list