[DIRMINA-880] Implementation of SslFilter#isCloseNotify() is incorrect - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Minor
Resolution: Fixed
Affects Version/s: 2.0.4
Fix Version/s: 2.0.5
Component/s: Filter
Labels:
None
Environment:
RHEL 5.6

Description

SslFilter#isCloseNotify() shouldn't probe for the 4th byte as its value may vary. Current implementation doesn't also cover SSL 3.0/TLS 1.1/TLS 1.2. I've created a patch that I believe has it right. Note that probes for SSL 2.0 are intentionally excluded as SSL 2.0 use has been prohibited by RFC 6176.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

isCloseNotify.patch
19/Dec/11 16:09
1 kB
Dimitar Mavrodiev

Activity

People

Assignee:: Emmanuel Lécharny

Reporter:: Dimitar Mavrodiev

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 19/Dec/11 16:08

Updated:: 20/Dec/11 00:57

Resolved:: 20/Dec/11 00:57