RFR: 8299870: TLS record version check allows invalid records [v4]
Matthew Donovan
duke at openjdk.org
Tue Jan 17 17:12:05 UTC 2023
> - Updated ProtocolVersion.isNegotiable() to check a bounded range of version numbers.
> - Removed IllegalRecordVersion.java from ProblemList.txt
>
> Tested with jdk_security and jdk_security3 test groups.
Matthew Donovan has updated the pull request incrementally with one additional commit since the last revision:
removed extra whitespace
-------------
Changes:
- all: https://git.openjdk.org/jdk/pull/11929/files
- new: https://git.openjdk.org/jdk/pull/11929/files/b67c9deb..13643dd6
Webrevs:
- full: https://webrevs.openjdk.org/?repo=jdk&pr=11929&range=03
- incr: https://webrevs.openjdk.org/?repo=jdk&pr=11929&range=02-03
Stats: 1 line in 1 file changed: 0 ins; 0 del; 1 mod
Patch: https://git.openjdk.org/jdk/pull/11929.diff
Fetch: git fetch https://git.openjdk.org/jdk pull/11929/head:pull/11929
PR: https://git.openjdk.org/jdk/pull/11929
More information about the security-dev
mailing list