Cypherpunks repositories - gostls13.git/commit

author	Roland Shoemaker <rolandshoemaker@gmail.com>
	Fri, 15 May 2020 19:49:04 +0000 (12:49 -0700)
committer	Filippo Valsorda <filippo@golang.org>
	Tue, 9 Jun 2020 23:24:08 +0000 (23:24 +0000)
commit	7b872b6d955d3e749ea62dbfced68ab5c61eae91
tree	0ec8ecb24dd9a398564f620a689043517bab17c0	tree
parent	c4f77b11df3ab8c3a717ef7f57f957c491d57c8e	commit \| diff

crypto/tls: restore OCSP and SCTs during session resumption

Restore previously sent SCTs and stapled OCSP response during session
resumption for both TLS 1.2 and 1.3. This behavior is somewhat
complicated for TLS 1.2 as SCTs are sent during the server hello,
so they override what is saved in ClientSessionState. It is likely
that if the server is sending a different set of SCTs there is probably
a reason for doing so, such as a log being retired, or SCT validation
requirements changing, so it makes sense to defer to the server in
that case.

Fixes #39075

Change-Id: I3c0fa2f69c6bf0247a447c48a1b4c733a882a233
Reviewed-on: https://go-review.googlesource.com/c/go/+/234237
Reviewed-by: Filippo Valsorda <filippo@golang.org>

doc/go1.15.html		diff \| blob \| history
src/crypto/tls/common.go		diff \| blob \| history
src/crypto/tls/handshake_client.go		diff \| blob \| history
src/crypto/tls/handshake_client_test.go		diff \| blob \| history
src/crypto/tls/handshake_client_tls13.go		diff \| blob \| history