On Wed, 17 Sep 2025 12:15:10 GMT, Daniel Jeliński <[email protected]> wrote:
> TLS 1.3 changed the way it generates the FFDHE shared secret. In TLS 1.2, the > leading zeroes in the shared secret were stripped, and in TLS 1.3 the leading > zeroes are preserved. > > Thanks to the recent work in > [JDK-8189441](https://bugs.openjdk.org/browse/JDK-8189441), we now have a new > algorithm name `Generic` that can be used to generate a shared secret with > the leading zeroes preserved. > > This PR changes the TLS 1.3 handshake to use the new algorithm name. > > I didn't add any tests to verify the correctness of the handshake. This can > be verified using tlsfuzzer, see JBS for details. > > Tier1-3 tests continue to pass. This pull request has now been integrated. Changeset: 25d2b52a Author: Daniel Jeliński <[email protected]> URL: https://git.openjdk.org/jdk/commit/25d2b52ab97d116024872e567c1c1ffd814616d4 Stats: 3 lines in 1 file changed: 0 ins; 0 del; 3 mod 8328046: Need to keep leading zeros in TlsPremasterSecret of TLS1.3 DHKeyAgreement Reviewed-by: hchao ------------- PR: https://git.openjdk.org/jdk/pull/27343
