[ruby-cvs:71326] rhe:r64234 (trunk): net/http, net/ftp: fix session resumption with TLS 1.3

rhe at ruby-lang.org rhe at ruby-lang.org
Wed Aug 8 23:13:55 JST 2018


rhe	2018-08-08 23:13:55 +0900 (Wed, 08 Aug 2018)

  New Revision: 64234

  https://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=revision&revision=64234

  Log:
    net/http, net/ftp: fix session resumption with TLS 1.3
    
    When TLS 1.3 is in use, the session ticket may not have been sent yet
    even though a handshake has finished. Also, the ticket could change if
    multiple session ticket messages are sent by the server. Use
    SSLContext#session_new_cb instead of calling SSLSocket#session
    immediately after a handshake. This way also works with earlier protocol
    versions.

  Modified files:
    trunk/lib/net/ftp.rb
    trunk/lib/net/http.rb
    trunk/test/net/http/test_https.rb


More information about the ruby-cvs mailing list