TLS1.3 record padding

Bradford Wetmore bradford.wetmore at oracle.com
Sat Nov 5 03:01:50 UTC 2022



On 11/4/2022 8:58 AM, Xuelei Fan wrote:
> The padding may be also necessary to prevent from a kind of attacks, 
> besides hiding the length.  But I cannot recall the details.

I have a vague recollection of that, but I was thinking it was something 
pre-1.3.  But I'm not seeing any special padding in the pre-TLSv1.3 
changeset:

c7c819cd8bba9f204f23b24a0d788fda61823eb3

so I may be off in my recollections.

>  Here is an enhancement 
> request in JBS (https://bugs.openjdk.org/browse/JDK-8244983 
> <https://bugs.openjdk.org/browse/JDK-8244983>), please feel free to take 
> it.

Ah yes.

Brad




More information about the security-dev mailing list