RFR: 8331682: Slow networks/Impatient clients can potentially send unencrypted TLSv1.3 alerts that won't parse on the server [v9]
Artur Barashev
abarashev at openjdk.org
Wed Sep 25 20:01:53 UTC 2024
> https://bugs.openjdk.org/browse/JDK-8331682
Artur Barashev has updated the pull request incrementally with one additional commit since the last revision:
Use 'useTLS13PlusSpec()' instead of comparing the version to TLS13. This improves the odds that we won't need to fix this issue again when TLS1.4 comes out
-------------
Changes:
- all: https://git.openjdk.org/jdk/pull/21043/files
- new: https://git.openjdk.org/jdk/pull/21043/files/8ce7d623..f72bab25
Webrevs:
- full: https://webrevs.openjdk.org/?repo=jdk&pr=21043&range=08
- incr: https://webrevs.openjdk.org/?repo=jdk&pr=21043&range=07-08
Stats: 1 line in 1 file changed: 0 ins; 0 del; 1 mod
Patch: https://git.openjdk.org/jdk/pull/21043.diff
Fetch: git fetch https://git.openjdk.org/jdk.git pull/21043/head:pull/21043
PR: https://git.openjdk.org/jdk/pull/21043
More information about the security-dev
mailing list