Integrated: 8241248: NullPointerException in sun.security.ssl.HKDF.extract(HKDF.java:93)

Alexey Bakhtin abakhtin at openjdk.java.net
Mon May 10 09:48:16 UTC 2021


On Fri, 23 Apr 2021 20:51:19 GMT, Alexey Bakhtin <abakhtin at openjdk.org> wrote:

> Hello All,
> 
> Could you please review the fix for the JDK-8241248?
> The issue happens during the TLSv1.3 handshake without server stateless session resumption in case of server receives several parallel requests with the same pre_shared_key.
> The main idea of the fix is to remove resuming session from the session cache in the early stage.
> 
> JBS: https://bugs.openjdk.java.net/browse/JDK-8241248
> Webrev 8u: http://cr.openjdk.java.net/~abakhtin/8241248/webrev.v0/
> 
> The test from the bug report using OpenSSL is passed ( -Djdk.tls.server.enableSessionTicketExtension=false )
> javax/net/ssl and sun/security/ssl jtreg tests passed
> 
> Regards
> Alexey

This pull request has now been integrated.

Changeset: 1603ca23
Author:    Alexey Bakhtin <abakhtin at openjdk.org>
Committer: Vladimir Kempik <vkempik at openjdk.org>
URL:       https://git.openjdk.java.net/jdk/commit/1603ca23422b03157afb2bd1050524465474b60e
Stats:     45 lines in 4 files changed: 40 ins; 3 del; 2 mod

8241248: NullPointerException in sun.security.ssl.HKDF.extract(HKDF.java:93)

Reviewed-by: jnimeh, xuelei

-------------

PR: https://git.openjdk.java.net/jdk/pull/3664


More information about the security-dev mailing list