Integrated: 8331682: Slow networks/Impatient clients can potentially send unencrypted TLSv1.3 alerts that won't parse on the server
Artur Barashev
abarashev at openjdk.org
Mon Nov 4 18:55:37 UTC 2024
On Tue, 17 Sep 2024 17:44:37 GMT, Artur Barashev <abarashev at openjdk.org> wrote:
> Check for unexpected plaintext alert message during TLSv1.3 handshake. This can happen if client doesn't receive ServerHello due to network timeout and tries to close the connection by sending an alert message.
This pull request has now been integrated.
Changeset: 8b474971
Author: Artur Barashev <abarashev at openjdk.org>
URL: https://git.openjdk.org/jdk/commit/8b4749713c63a08e502845ed5d0a0236822018cd
Stats: 470 lines in 4 files changed: 465 ins; 0 del; 5 mod
8331682: Slow networks/Impatient clients can potentially send unencrypted TLSv1.3 alerts that won't parse on the server
Reviewed-by: wetmore, djelinski, xuelei
-------------
PR: https://git.openjdk.org/jdk/pull/21043
More information about the security-dev
mailing list