Closed Bug 1528666 Opened 7 years ago Closed 6 years ago

Allow changing ciphersuite in TLS 1.3 resumption

Categories

(NSS :: Libraries, enhancement, P1)

Product:
NSS
Component:
Libraries
Type:
enhancement

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: mt, Assigned: mt)

Details

(Whiteboard: [tls13])

Attachments

(1 file)

Bug 1528666 - Enable resumption from different 1.3 ciphersuite, r?jcj
47 bytes, text/x-phabricator-request
Details | Review

It turns out that we don't have tests that verify that 0-RTT and resumption are properly handled when ciphersuites change. So I wrote some. Then I discovered that we allow the ciphersuite to change to a compatible one (that is, one with a matching hash function), but we don't attempt resumption if the previous ciphersuite is disabled. That is relatively easy to do.

We allowed resumption before, but it didn't work.

Note that I also tightened the version test. We test against the version of
the session, not the versions permitted by the client. This is because
resumption can't change the version.

Priority: -- → P1
Whiteboard: [tls13]

https://hg.mozilla.org/projects/nss/rev/cab2c8905214a197b92f0b05c1a5d0a2f6dacabe

Status: NEW → RESOLVED
Closed: 6 years ago
Resolution: --- → FIXED
Target Milestone: --- → 3.46
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: