RFR: 8277307: Pre shared key sent under both session_ticket and pre_shared_key extensions [v2]

Daniel Jeliński djelinski at openjdk.java.net
Thu Jun 2 21:02:16 UTC 2022

> Session ticket extension should only contain pre-TLS1.3 stateless session tickets; it should not be used for sending TLS1.3 pre-shared keys.

Daniel Jeliński has updated the pull request incrementally with one additional commit since the last revision:

  different check for TLS13


  - all: https://git.openjdk.java.net/jdk/pull/8922/files
  - new: https://git.openjdk.java.net/jdk/pull/8922/files/258930f5..ae7c68b2

 - full: https://webrevs.openjdk.java.net/?repo=jdk&pr=8922&range=01
 - incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=8922&range=00-01

  Stats: 3 lines in 1 file changed: 0 ins; 2 del; 1 mod
  Patch: https://git.openjdk.java.net/jdk/pull/8922.diff
  Fetch: git fetch https://git.openjdk.java.net/jdk pull/8922/head:pull/8922

PR: https://git.openjdk.java.net/jdk/pull/8922

More information about the security-dev mailing list