Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8212885

TLS 1.3 resumed session does not retain peer certificate chain

    Details

    • Subcomponent:
    • Resolved In Build:
      b20
    • Verification:
      Verified

      Backports

        Description

        TLS 1.3 resumed sessions are not preserving the peer certificate chain that is held in the initial SSLSession object created from the initial handshake. The SSLSession object pulled from the resumed session will throw SSLPeerUnverifiedException when SSLSession.getPeerCertificates() or SSLSession.getPeerPrincipal() methods are invoked.

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  jnimeh Jamil Nimeh
                  Reporter:
                  jnimeh Jamil Nimeh
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  7 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: