RFR: 8315436: HttpsServer does not send TLS alerts
Daniel Jeliński
djelinski at openjdk.org
Thu Aug 31 08:30:22 UTC 2023
Please review this patch that ensures that alerts produced by `wrap` are sent to the peer.
When a fatal alert is produced by a `wrap` call, the returned status is `CLOSED`, but some bytes are produced in the destination buffer. These bytes need to be sent to the client.
The new test verifies this fix; without the fix the test fails with:
javax.net.ssl.SSLHandshakeException: Remote host terminated the handshake
With the fix the test passes; the exception thrown is :
javax.net.ssl.SSLHandshakeException: Received fatal alert: protocol_version
Existing tier1-3 tests continue to pass.
-------------
Commit messages:
- Update copyright
- Send TLS alerts
Changes: https://git.openjdk.org/jdk/pull/15505/files
Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=15505&range=00
Issue: https://bugs.openjdk.org/browse/JDK-8315436
Stats: 112 lines in 2 files changed: 110 ins; 1 del; 1 mod
Patch: https://git.openjdk.org/jdk/pull/15505.diff
Fetch: git fetch https://git.openjdk.org/jdk.git pull/15505/head:pull/15505
PR: https://git.openjdk.org/jdk/pull/15505
More information about the net-dev
mailing list