Cypherpunks repositories - gostls13.git/commit

author	Daniel McCarney <daniel@binaryparadox.net>
	Mon, 17 Feb 2025 16:45:23 +0000 (11:45 -0500)
committer	Gopher Robot <gobot@golang.org>
	Mon, 10 Mar 2025 21:02:22 +0000 (14:02 -0700)
commit	895bcf178d86449f6d96a0bd19dc4e4b0a3d3c59
tree	1d115dac21e9fcb1b67238e6de6a07725f6d614e	tree
parent	2620cc1caae099c5947bfd5ff2c10bd4a3b628fd	commit \| diff

crypto/tls: reject empty TLS 1.3 session ticket

While not clearly motivated by normative language in RFC 8446 it seems
clear that an empty opaque ticket value is non-operable, and so we
should reject it with an appropriate alert/error.

This allows removing the SendEmptySessionTicket-TLS13 BoGo test from the
bogo excluded tests configuration.

Fixes #70513
Updates #72006

Change-Id: I589b34e86fb1eb27a349a230e920c22284597cde
Reviewed-on: https://go-review.googlesource.com/c/go/+/650735
Reviewed-by: Filippo Valsorda <filippo@golang.org>
Reviewed-by: Roland Shoemaker <roland@golang.org>
LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
Reviewed-by: David Chase <drchase@google.com>
Auto-Submit: Daniel McCarney <daniel@binaryparadox.net>

src/crypto/tls/bogo_config.json		diff \| blob \| history
src/crypto/tls/handshake_client_tls13.go		diff \| blob \| history