Hello All, Could you please review the fix for the JDK-8241248? The issue happens during the TLSv1.3 handshake without server stateless session resumption in case of server receives several parallel requests with the same pre_shared_key. The main idea of the fix is to remove resuming session from the session cache in the early stage.
JBS: https://bugs.openjdk.java.net/browse/JDK-8241248 Webrev: http://cr.openjdk.java.net/~abakhtin/8241248/webrev.v0/ The test from the bug report using OpenSSL is passed ( -Djdk.tls.server.enableSessionTicketExtension=false ) javax/net/ssl and sun/security/ssl jtreg tests passed Regards Alexey ------------- Commit messages: - 8241248: NullPointerException in sun.security.ssl.HKDF.extract(HKDF.java:93) Changes: https://git.openjdk.java.net/jdk/pull/3664/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=3664&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8241248 Stats: 24 lines in 2 files changed: 11 ins; 5 del; 8 mod Patch: https://git.openjdk.java.net/jdk/pull/3664.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/3664/head:pull/3664 PR: https://git.openjdk.java.net/jdk/pull/3664
