RFR: 8263779: SSLEngine reports NEED_WRAP continuously without producing any further output
Xue-Lei Andrew Fan
xuelei at openjdk.java.net
Mon Apr 5 23:49:08 UTC 2021
On Wed, 31 Mar 2021 20:52:57 GMT, Xue-Lei Andrew Fan <xuelei at openjdk.org> wrote:
> As described in the bug, by connecting the SSLEngine with a misbehaving peer SSL implementation, it can get into a state where it calling `wrap` reports getStatus == OK, getHandshakeStatus === NEED_WRAP but still doesn't produce any further output. It happens when the output bound is not empty.
>
> The handshake status could have more precise status if the out bound. The patch was confirmed by the bug submitter.
ping ...
-------------
PR: https://git.openjdk.java.net/jdk/pull/3292
More information about the security-dev
mailing list