RFR: 8277307: Pre shared key sent under both session_ticket and pre_shared_key extensions [v2]
Daniel Jeliński
djelinski at openjdk.java.net
Wed Jun 8 06:36:28 UTC 2022
On Wed, 8 Jun 2022 05:05:13 GMT, Anthony Scarpino <ascarpino at openjdk.org> wrote:
> The bug and the PR could have used a lot more description that the issue here is that 1.2 and 1.3 are enabled at the same time.
As far as I can tell, 1.2 and 1.3 are both enabled by default.
> One could ask the reverse, if the resumption is from 1.2 should we be sending a 1.3 pre_shared_key extension.. But that can be for another bug I suppose.
We are not sending `pre_shared_key` when resuming TLS 1.2
> please make sure all jdk_security tests and tier1 tests pass before integrating
done. Thanks for reviewing!
-------------
PR: https://git.openjdk.java.net/jdk/pull/8922
More information about the security-dev
mailing list