diff options
author | Filippo Valsorda <filippo@golang.org> | 2023-05-22 10:49:07 +0200 |
---|---|---|
committer | Filippo Valsorda <filippo@golang.org> | 2023-05-24 23:56:55 +0000 |
commit | 6824765b4b981291712ae6d60702f6f0350f57d5 (patch) | |
tree | 0de9f313a7a137e950ee6c748db81d0f2f60dd68 /api | |
parent | 371ebe731bf6ebae3d6914835674e276d98254f5 (diff) | |
download | go-6824765b4b981291712ae6d60702f6f0350f57d5.tar.gz go-6824765b4b981291712ae6d60702f6f0350f57d5.zip |
crypto/tls: add WrapSession and UnwrapSession
There was a bug in TestResumption: the first ExpiredSessionTicket was
inserting a ticket far in the future, so the second ExpiredSessionTicket
wasn't actually supposed to fail. However, there was a bug in
checkForResumption->sendSessionTicket, too: if a session was not resumed
because it was too old, its createdAt was still persisted in the next
ticket. The two bugs used to cancel each other out.
For #60105
Fixes #19199
Change-Id: Ic9b2aab943dcbf0de62b8758a6195319dc286e2f
Reviewed-on: https://go-review.googlesource.com/c/go/+/496821
Run-TryBot: Filippo Valsorda <filippo@golang.org>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Roland Shoemaker <roland@golang.org>
Reviewed-by: Damien Neil <dneil@google.com>
Diffstat (limited to 'api')
-rw-r--r-- | api/next/60105.txt | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/api/next/60105.txt b/api/next/60105.txt index 251f574c8f..03fb68fa3a 100644 --- a/api/next/60105.txt +++ b/api/next/60105.txt @@ -3,3 +3,7 @@ pkg crypto/tls, method (*SessionState) Bytes() ([]uint8, error) #60105 pkg crypto/tls, type SessionState struct #60105 pkg crypto/tls, func NewResumptionState([]uint8, *SessionState) (*ClientSessionState, error) #60105 pkg crypto/tls, method (*ClientSessionState) ResumptionState() ([]uint8, *SessionState, error) #60105 +pkg crypto/tls, method (*Config) DecryptTicket([]uint8, ConnectionState) (*SessionState, error) #60105 +pkg crypto/tls, method (*Config) EncryptTicket(ConnectionState, *SessionState) ([]uint8, error) #60105 +pkg crypto/tls, type Config struct, UnwrapSession func([]uint8, ConnectionState) (*SessionState, error) #60105 +pkg crypto/tls, type Config struct, WrapSession func(ConnectionState, *SessionState) ([]uint8, error) #60105 |