Closed Bug 1550834 Opened 5 years ago Closed 5 years ago

Don't use TLS session ticket if the channel is isolated by anti-tracking checks

Categories

(Core :: Networking, defect, P2)

Product:
Core
Component:
Networking
Type:
defect

Tracking

()

Status:
RESOLVED FIXED
Milestone:
mozilla68
Tracking Flags:
Tracking Status
firefox68 --- fixed

People

(Reporter: michal, Assigned: michal)

Details

(Whiteboard: [necko-triaged])

Attachments

(1 file)

Bug 1550834 - Don't use TLS session ticket if the channel is isolated by anti-tracking checks, r=valentin
47 bytes, text/x-phabricator-request
Details | Review

The patch in bug 1500533 sets SSL_ENABLE_SESSION_TICKETS flag on the socket, which means that the resumption token won't be saved to the cache. It looks like we want to set also SSL_NO_CACHE flag which would ensure that the connection won't use any existing token from the cache.

Pushed by mnovotny@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/e4f5f5cdc59d
Don't use TLS session ticket if the channel is isolated by anti-tracking checks, r=valentin

https://hg.mozilla.org/mozilla-central/rev/e4f5f5cdc59d

Status: NEW → RESOLVED
Closed: 5 years ago
status-firefox68: affectedfixed
Resolution: --- → FIXED
Target Milestone: --- → mozilla68
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: