RFR: 8299870: TLS record version check allows invalid records [v2]
Matthew Donovan
duke at openjdk.org
Thu Jan 12 15:32:23 UTC 2023
> - Updated ProtocolVersion.isNegotiable() to check a bounded range of version numbers.
> - Removed IllegalRecordVersion.java from ProblemList.txt
>
> Tested with jdk_security and jdk_security3 test groups.
Matthew Donovan has updated the pull request incrementally with three additional commits since the last revision:
- renamed IllegalRecordVersion to HandshakeWithInvalidRecordVersion
- Updated IllegalRecordVersion
- reverted change in ProtocolVersion, updated IllegalRecordVersion
-------------
Changes:
- all: https://git.openjdk.org/jdk/pull/11929/files
- new: https://git.openjdk.org/jdk/pull/11929/files/8157cef3..01e0a60a
Webrevs:
- full: https://webrevs.openjdk.org/?repo=jdk&pr=11929&range=01
- incr: https://webrevs.openjdk.org/?repo=jdk&pr=11929&range=00-01
Stats: 337 lines in 3 files changed: 258 ins; 79 del; 0 mod
Patch: https://git.openjdk.org/jdk/pull/11929.diff
Fetch: git fetch https://git.openjdk.org/jdk pull/11929/head:pull/11929
PR: https://git.openjdk.org/jdk/pull/11929
More information about the security-dev
mailing list