You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@mina.apache.org by "Emmanuel Lecharny (Commented) (JIRA)" <ji...@apache.org> on 2011/12/20 01:35:30 UTC

[jira] [Commented] (DIRMINA-880) Implementation of SslFilter#isCloseNotify() is incorrect

    [ https://issues.apache.org/jira/browse/DIRMINA-880?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13172787#comment-13172787 ] 

Emmanuel Lecharny commented on DIRMINA-880:
-------------------------------------------

You are correct. I'll apply the patch.

Many thanks !
                
> Implementation of SslFilter#isCloseNotify() is incorrect
> --------------------------------------------------------
>
>                 Key: DIRMINA-880
>                 URL: https://issues.apache.org/jira/browse/DIRMINA-880
>             Project: MINA
>          Issue Type: Bug
>          Components: Filter
>    Affects Versions: 2.0.4
>         Environment: RHEL 5.6
>            Reporter: Dimitar Mavrodiev
>            Priority: Minor
>         Attachments: isCloseNotify.patch
>
>
> SslFilter#isCloseNotify() shouldn't probe for the 4th byte as its value may vary. Current implementation doesn't also cover SSL 3.0/TLS 1.1/TLS 1.2. I've created a patch that I believe has it right. Note that probes for SSL 2.0 are intentionally excluded as SSL 2.0 use has been prohibited by RFC 6176.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira