RFR: 8273553: sun.security.ssl.SSLEngineImpl.closeInbound also has similar error of JDK-8253368
Bradford Wetmore
wetmore at openjdk.java.net
Tue Mar 22 00:29:24 UTC 2022
On Mon, 21 Mar 2022 17:00:53 GMT, Rajan Halade <rhalade at openjdk.org> wrote:
>> JDK-8253368 changed the behavior of SSLSocket to no longer throw a fatal internal_error (80) and invalidate existing sessions (either completed or under construction) as described in (RFC 4346/TLSv1.1+) if a connection was closed without receiving a close_notify alert from the peer.
>>
>> This change introduces similar behavior to SSLEngine.
>>
>> The unit test checks that closing the read(input) sides of the SSLSocket/SSLEngine throws an SSLException, but doesn't invalidate their respective sessions.
>>
>> Tier1/2 mach5 tests have been successfully run.
>
> test/jdk/sun/security/ssl/SSLSocketImpl/SSLSocketSSLEngineCloseInbound.java line 2:
>
>> 1: /*
>> 2: * Copyright (c) 2011, 2022, Oracle and/or its affiliates. All rights reserved.
>
> should this be updated to only list 2022?
In previous days, we used to include the dates from the templates, which this test was derived from. I could go either way.
-------------
PR: https://git.openjdk.java.net/jdk/pull/7796
More information about the security-dev
mailing list