Details
-
Type:
Enhancement
-
Status: Resolved
-
Priority:
P3
-
Resolution: Fixed
-
Affects Version/s: 11, 12, 13, 14
-
Fix Version/s: 14
-
Component/s: security-libs
-
Subcomponent:
-
Introduced In Version:
-
Resolved In Build:b11
Backports
Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
---|---|---|---|---|---|---|
JDK-8245808 | 13.0.4 | Xuelei Fan | P3 | Resolved | Fixed | b03 |
JDK-8238453 | 11.0.8-oracle | Xuelei Fan | P3 | Resolved | Fixed | b01 |
JDK-8240435 | 11.0.8 | Xuelei Fan | P3 | Resolved | Fixed | b01 |
JDK-8267343 | openjdk8u302 | Xuelei Fan | P3 | Resolved | Fixed | b04 |
JDK-8243695 | 8u261 | Prasadarao Koppula | P3 | Resolved | Fixed | b05 |
JDK-8247028 | emb-8u261 | Prasadarao Koppula | P3 | Resolved | Fixed | team |
Description
In the SSLSocketInputRecord.decodeInputRecord() implementation:
// skip the first byte: handshake type
byte handshakeType = handshakeFrag.get();
The handshake type was not checked until the handshake message get fully parsed. It's nice to check that the handshake type is known here and fail fast.
Similar to SSLEngineInputRecord.decodeInputRecord() and DTLSInputRecord.parseHandshakeMessage().
// skip the first byte: handshake type
byte handshakeType = handshakeFrag.get();
The handshake type was not checked until the handshake message get fully parsed. It's nice to check that the handshake type is known here and fail fast.
Similar to SSLEngineInputRecord.decodeInputRecord() and DTLSInputRecord.parseHandshakeMessage().
Attachments
Issue Links
- backported by
-
JDK-8238453 Fail fast if the handshake type is unknown
-
- Resolved
-
-
JDK-8240435 Fail fast if the handshake type is unknown
-
- Resolved
-
-
JDK-8243695 Fail fast if the handshake type is unknown
-
- Resolved
-
-
JDK-8245808 Fail fast if the handshake type is unknown
-
- Resolved
-
-
JDK-8247028 Fail fast if the handshake type is unknown
-
- Resolved
-
-
JDK-8267343 Fail fast if the handshake type is unknown
-
- Resolved
-
(1 backported by)