[RFR] 8242008: SSLSession inconsistencies
Jamil Nimeh
jamil.j.nimeh at oracle.com
Wed Apr 15 05:38:43 UTC 2020
Hi Tony, this looks good to me.
--Jamil
On 4/8/2020 1:18 PM, Anthony Scarpino wrote:
> Hi,
>
> I'd like a review of the following change. There wre inconsistencies
> with SSLSession and session caching that needed to be fixed. They are:
> - With stateless resumption, SSLSession.getSessionContext() would
> return null.
> - TLS 1.3 w/ session cache, the initial session was being added to the
> cache unnecessarily.
> - With stateless resumption, SSLSession getPeerHost() could return
> corrupted.
>
> A test is included for getSessionContext
>
> https://cr.openjdk.java.net/~ascarpino/8242008/webrev.01/
>
> thanks
>
> Tony
More information about the security-dev
mailing list