RFR: 8331682: Slow networks/Impatient clients can potentially send unencrypted TLSv1.3 alerts that won't parse on the server [v7]
Artur Barashev
abarashev at openjdk.org
Tue Sep 24 20:22:37 UTC 2024
On Tue, 24 Sep 2024 14:27:25 GMT, Bernd <duke at openjdk.org> wrote:
> Can’t review it, still don’t understand how the error condition happens. (But I do know massive problems with extra messages sent when a broken connection is wound down - it might want to use aggressive timeouts for those graticious messages)
I think the issue is described clearly in the bug ticket:
https://bugs.openjdk.org/browse/JDK-8331682
Please let me know if you have any specific questions.
-------------
PR Comment: https://git.openjdk.org/jdk/pull/21043#issuecomment-2372297563
More information about the security-dev
mailing list