Potential bug in TLS 1.3 implementation
Bradford Wetmore
bradford.wetmore at oracle.com
Wed Mar 3 16:20:38 UTC 2021
Thanks for the catch and submission, but this was fixed back in December.
The JDK code was moved from mercurial (hg.openjdk.java.net) to GitHub as
part of project Skara at the end of summer.
https://github.com/openjdk/jdk
You can use the "blame" function to see which changeset pushed it.
The Mercurial repos remain as read-only for historical purposes only.
Brad
On 3/3/2021 2:09 AM, Petter Sælen wrote:
> Hi
>
> I found an enum that seems to have mismatched string representations.
> It concerns TLS extension client_certificate_type (19) and padding (21).
>
> See line 277 and 281 here:
> https://hg.openjdk.java.net/jdk/jdk/file/ee1d592a9f53/src/java.base/share/classes/sun/security/ssl/SSLExtension.java
>
> Or see attached screenshot
> Screenshot 2021-03-03 104230.png
>
>
>
> Is this the right place send this?
>
> Best regards
> Petter Sælen
>
More information about the security-dev
mailing list