RFR: 8367059: DTLS: loss of NewSessionTicket message results in handshake failure [v5]
Artur Barashev
abarashev at openjdk.org
Mon Oct 13 15:07:37 UTC 2025
On Mon, 13 Oct 2025 13:56:11 GMT, Artur Barashev <abarashev at openjdk.org> wrote:
>> test/jdk/javax/net/ssl/DTLS/DTLSOverDatagram.java line 541:
>>
>>> 539: new InetSocketAddress(HOST, SERVER_PORT);
>>> 540: InetSocketAddress clientSocketAddress =
>>> 541: new InetSocketAddress(HOST, CLIENT_PORT);
>>
>> Don't fix ports here. There's a nonzero chance that some other process will take these ports before you.
>>
>> Use port zero here. The port numbers used in SSLEngine don't need to match the datagram socket, they just need to match between the initial session and the resumption.
>
> Good catch, thanks!
Done, thanks!
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/27677#discussion_r2426615664
More information about the security-dev
mailing list