RFR: 8275811 Incorrect instance to dispose [v3]
Daniel Jeliński
duke at openjdk.java.net
Sat Oct 23 06:57:33 UTC 2021
> The current code that changes cipher suites disposes the new suite instead of the old one, which usually silently fails. This patch fixes the code to dispose the old instance instead.
>
> DTLS appears to be unaffected: DTLSOutputRecord keeps 2 ciphers and correctly [disposes the old one](https://github.com/openjdk/jdk/blob/739769c8fc4b496f08a92225a12d07414537b6c0/src/java.base/share/classes/sun/security/ssl/DTLSOutputRecord.java#L106), and DTLSInputRecord [doesn't dispose anything](https://github.com/openjdk/jdk/blob/4b9303b77b43d890ebacbec38b4ac5db7e171886/src/java.base/share/classes/sun/security/ssl/DTLSInputRecord.java#L57)
Daniel Jeliński has updated the pull request incrementally with one additional commit since the last revision:
Do not dispose writeCipher in changeCipherSpec - we may still need it
-------------
Changes:
- all: https://git.openjdk.java.net/jdk/pull/6084/files
- new: https://git.openjdk.java.net/jdk/pull/6084/files/1ee99ae4..dfc1a9ee
Webrevs:
- full: https://webrevs.openjdk.java.net/?repo=jdk&pr=6084&range=02
- incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=6084&range=01-02
Stats: 13 lines in 1 file changed: 0 ins; 13 del; 0 mod
Patch: https://git.openjdk.java.net/jdk/pull/6084.diff
Fetch: git fetch https://git.openjdk.java.net/jdk pull/6084/head:pull/6084
PR: https://git.openjdk.java.net/jdk/pull/6084
More information about the security-dev
mailing list