You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@mina.apache.org by "Dimitar Mavrodiev (Updated) (JIRA)" <ji...@apache.org> on 2011/12/19 17:11:30 UTC

[jira] [Updated] (DIRMINA-880) Implementation of SslFilter#isCloseNotify() is incorrect

     [ https://issues.apache.org/jira/browse/DIRMINA-880?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Dimitar Mavrodiev updated DIRMINA-880:
--------------------------------------

    Attachment: isCloseNotify.patch

isCloseNotify() fix
                
> Implementation of SslFilter#isCloseNotify() is incorrect
> --------------------------------------------------------
>
>                 Key: DIRMINA-880
>                 URL: https://issues.apache.org/jira/browse/DIRMINA-880
>             Project: MINA
>          Issue Type: Bug
>          Components: Filter
>    Affects Versions: 2.0.4
>         Environment: RHEL 5.6
>            Reporter: Dimitar Mavrodiev
>            Priority: Minor
>         Attachments: isCloseNotify.patch
>
>
> SslFilter#isCloseNotify() shouldn't probe for the 4th byte as its value may vary. Current implementation doesn't also cover SSL 3.0/TLS 1.1/TLS 1.2. I've created a patch that I believe has it right. Note that probes for SSL 2.0 are intentionally excluded as SSL 2.0 use has been prohibited by RFC 6176.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira