RFR: 8331682: Slow networks/Impatient clients can potentially send unencrypted TLSv1.3 alerts that won't parse on the server [v7]
Bernd
duke at openjdk.org
Tue Sep 24 14:29:39 UTC 2024
On Mon, 23 Sep 2024 20:21:53 GMT, Artur Barashev <duke at openjdk.org> wrote:
>> https://bugs.openjdk.org/browse/JDK-8331682
>
> Artur Barashev has updated the pull request incrementally with one additional commit since the last revision:
>
> Spell user_canceled instead of user_cancelled as per RFC
Can’t review it, still don’t understand how the error condition happens. (But I do know massive problems with extra messages sent when a broken connection is wound down - it might want to use aggressive timeouts for those graticious messages)
-------------
PR Comment: https://git.openjdk.org/jdk/pull/21043#issuecomment-2371462094
More information about the security-dev
mailing list