[RFR] 8242008: SSLSession inconsistencies

Xuelei Fan xuelei.fan at oracle.com
Wed Apr 15 05:41:03 UTC 2020


It looks good to me.

Nice to see a a new template!

Thanks,
Xuelei

On 4/8/2020 1:18 PM, Anthony Scarpino wrote:
> Hi,
> 
> I'd like a review of the following change.  There wre inconsistencies 
> with SSLSession and session caching that needed to be fixed.  They are:
> - With stateless resumption, SSLSession.getSessionContext() would return 
> null.
> - TLS 1.3 w/ session cache, the initial session was being added to the 
> cache unnecessarily.
> - With stateless resumption, SSLSession getPeerHost() could return 
> corrupted.
> 
> A test is included for getSessionContext
> 
> https://cr.openjdk.java.net/~ascarpino/8242008/webrev.01/
> 
> thanks
> 
> Tony


More information about the security-dev mailing list