Request for review: 8144093: JEP 244/8051498 - TLS Application-Layer Protocol Negotiation Extension
Bradford Wetmore
bradford.wetmore at oracle.com
Tue Dec 1 23:58:01 UTC 2015
>> 298: This test is not actually calling into checkResult on the server side. Ooops! You need to check the output of the wrap() before calling unwrap() as it overwrites the serverResult. You need to put in a similar checkResult() before doing the flip()s.
>
> So checks are required before and after the buffer flips, right?
Yes. In a full handshake, the Handshake complete message could be the
result of an unwrap (client) or wrap (server).
Brad
More information about the security-dev
mailing list