Re: [TLS] More clarity on resumption and session hash
"Salz, Rich" <rsalz@akamai.com> Fri, 29 May 2015 18:09 UTC
Return-Path: <rsalz@akamai.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 836E01B2AF2 for <tls@ietfa.amsl.com>; Fri, 29 May 2015 11:09:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.611
X-Spam-Level:
X-Spam-Status: No, score=-2.611 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vlx4zHNI0PpN for <tls@ietfa.amsl.com>; Fri, 29 May 2015 11:09:09 -0700 (PDT)
Received: from prod-mail-xrelay06.akamai.com (prod-mail-xrelay06.akamai.com [96.6.114.98]) by ietfa.amsl.com (Postfix) with ESMTP id E74791B2AE4 for <tls@ietf.org>; Fri, 29 May 2015 11:09:08 -0700 (PDT)
Received: from prod-mail-xrelay06.akamai.com (localhost.localdomain [127.0.0.1]) by postfix.imss70 (Postfix) with ESMTP id 6FD271665FA; Fri, 29 May 2015 18:09:08 +0000 (GMT)
Received: from prod-mail-relay09.akamai.com (prod-mail-relay09.akamai.com [172.27.22.68]) by prod-mail-xrelay06.akamai.com (Postfix) with ESMTP id 644B21665EA; Fri, 29 May 2015 18:09:08 +0000 (GMT)
Received: from email.msg.corp.akamai.com (ustx2ex-cas2.msg.corp.akamai.com [172.27.25.31]) by prod-mail-relay09.akamai.com (Postfix) with ESMTP id 5ED681E07C; Fri, 29 May 2015 18:09:08 +0000 (GMT)
Received: from USTX2EX-DAG1MB2.msg.corp.akamai.com (172.27.27.102) by ustx2ex-dag1mb2.msg.corp.akamai.com (172.27.27.102) with Microsoft SMTP Server (TLS) id 15.0.1076.9; Fri, 29 May 2015 13:09:07 -0500
Received: from USTX2EX-DAG1MB2.msg.corp.akamai.com ([172.27.6.132]) by ustx2ex-dag1mb2.msg.corp.akamai.com ([172.27.6.132]) with mapi id 15.00.1076.000; Fri, 29 May 2015 13:09:07 -0500
From: "Salz, Rich" <rsalz@akamai.com>
To: David Benjamin <davidben@chromium.org>, Eric Rescorla <ekr@rtfm.com>, Martin Thomson <martin.thomson@gmail.com>
Thread-Topic: [TLS] More clarity on resumption and session hash
Thread-Index: AQHQlxFQdGX8niFqsUOL72AZUFwucZ2QaWIAgAAFhQCAAfF5gIABObgA//+sfcA=
Date: Fri, 29 May 2015 18:09:07 +0000
Message-ID: <f7a4a15a0d5d4c859be1193ce5dcd313@ustx2ex-dag1mb2.msg.corp.akamai.com>
References: <CABcZeBM9UGZoifzDZZ3METMJJHa1ueX9CdHiccYTDW5UVC3RrA@mail.gmail.com> <20150527172329.GI27628@localhost> <CABkgnnUb5jDMMchxDxun_Kp9hYJ8_YFK_URrE=bXE8oej=zYCA@mail.gmail.com> <CABcZeBO6=V8HFTnr82_tt63HQiwSjeSJ-o-hS3sr_tUnO-Jy5g@mail.gmail.com> <CAF8qwaBori2QARe4Xz0aoV2OnQoyXvxGYT03YFvSwGeC9eRZUw@mail.gmail.com>
In-Reply-To: <CAF8qwaBori2QARe4Xz0aoV2OnQoyXvxGYT03YFvSwGeC9eRZUw@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [172.19.41.127]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/1q4aaZaJRd3haT0uPqnfNABkp3o>
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] More clarity on resumption and session hash
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 29 May 2015 18:09:10 -0000
> I poked a bit more and I was mistaken about OpenSSL's d2i_SSL_SESSION behavior: Although it does ignore the structure version, it will fail the parse if it sees elements at the end of the structure it doesn't understand. We'd like to change this. Allow applications to append their own data to a session is very useful. (We is probably my employer submitting patches to OpenSSL which someone on the dev team like me will review.() /r$
- [TLS] More clarity on resumption and session hash Eric Rescorla
- Re: [TLS] More clarity on resumption and session … Karthikeyan Bhargavan
- Re: [TLS] More clarity on resumption and session … Eric Rescorla
- Re: [TLS] More clarity on resumption and session … Martin Thomson
- Re: [TLS] More clarity on resumption and session … Karthikeyan Bhargavan
- Re: [TLS] More clarity on resumption and session … Ilari Liusvaara
- Re: [TLS] More clarity on resumption and session … Karthikeyan Bhargavan
- Re: [TLS] More clarity on resumption and session … Ilari Liusvaara
- Re: [TLS] More clarity on resumption and session … Ilari Liusvaara
- Re: [TLS] More clarity on resumption and session … David Benjamin
- Re: [TLS] More clarity on resumption and session … David Benjamin
- Re: [TLS] More clarity on resumption and session … Nico Williams
- Re: [TLS] More clarity on resumption and session … Martin Thomson
- Re: [TLS] More clarity on resumption and session … Eric Rescorla
- Re: [TLS] More clarity on resumption and session … David Benjamin
- Re: [TLS] More clarity on resumption and session … Salz, Rich
- Re: [TLS] More clarity on resumption and session … David Benjamin
- Re: [TLS] More clarity on resumption and session … David Benjamin
- Re: [TLS] More clarity on resumption and session … Adam Langley