Skip to content

Commit

Permalink
crypto/tls: don't generate random ticket keys if already set.
Browse files Browse the repository at this point in the history
If SetSessionTicketKeys was called on a fresh tls.Config, the configured
keys would be overridden with a random key by serverInit.

Fixes golang#15421.

Change-Id: I5d6cc81fc3e5de4dfa15eb614d102fb886150d1b
Reviewed-on: https://go-review.googlesource.com/27317
Reviewed-by: Brad Fitzpatrick <[email protected]>
  • Loading branch information
agl committed Aug 18, 2016
1 parent 999c968 commit 251d647
Show file tree
Hide file tree
Showing 2 changed files with 15 additions and 4 deletions.
2 changes: 1 addition & 1 deletion common.go
Original file line number Diff line number Diff line change
Expand Up @@ -450,7 +450,7 @@ func (c *Config) clone() *Config {
}

func (c *Config) serverInit() {
if c.SessionTicketsDisabled {
if c.SessionTicketsDisabled || len(c.ticketKeys()) != 0 {
return
}

Expand Down
17 changes: 14 additions & 3 deletions handshake_client_test.go
Original file line number Diff line number Diff line change
Expand Up @@ -648,20 +648,31 @@ func TestClientResumption(t *testing.T) {
t.Fatal("first ticket doesn't match ticket after resumption")
}

key2 := randomKey()
serverConfig.SetSessionTicketKeys([][32]byte{key2})
key1 := randomKey()
serverConfig.SetSessionTicketKeys([][32]byte{key1})

testResumeState("InvalidSessionTicketKey", false)
testResumeState("ResumeAfterInvalidSessionTicketKey", true)

serverConfig.SetSessionTicketKeys([][32]byte{randomKey(), key2})
key2 := randomKey()
serverConfig.SetSessionTicketKeys([][32]byte{key2, key1})
ticket = getTicket()
testResumeState("KeyChange", true)
if bytes.Equal(ticket, getTicket()) {
t.Fatal("new ticket wasn't included while resuming")
}
testResumeState("KeyChangeFinish", true)

// Reset serverConfig to ensure that calling SetSessionTicketKeys
// before the serverConfig is used works.
serverConfig = &Config{
CipherSuites: []uint16{TLS_RSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_RC4_128_SHA},
Certificates: testConfig.Certificates,
}
serverConfig.SetSessionTicketKeys([][32]byte{key2})

testResumeState("FreshConfig", true)

clientConfig.CipherSuites = []uint16{TLS_ECDHE_RSA_WITH_RC4_128_SHA}
testResumeState("DifferentCipherSuite", false)
testResumeState("DifferentCipherSuiteRecovers", true)
Expand Down

0 comments on commit 251d647

Please sign in to comment.