Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-6976527

The new IV work in TLS 1.1 is doing unnecessary copies following crypto operations

    XMLWordPrintable

Details

    • Bug
    • Resolution: Duplicate
    • P4
    • None
    • 7
    • security-libs
    • None

    Backports

      Description

        In CipherBox, we added some code to handle the addition of the IV in the data packet. This results in us moving around some data to "prepend" the dynamic IV field on an encryption, and "strips" the IV field on decryption.

        This would be much better handled by modifying the Input/OutputRecords. Pass down the IV size to the Input/OutputRecord, then let the I/OR offset the data being written/read by the IV size. I think it's a simple adjustment to the count variables.

        I may be thinking this is too easy, but it seems very straightforward.

        Attachments

          Issue Links

            backported by

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-2222439 The new IV work in TLS 1.1 is doing unnecessary copies following crypto operations

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Closed
            duplicates

            JEP - Java Enhancement Proposal JDK-8043758 JEP 219: Datagram Transport Layer Security (DTLS)

            • P1 - Blocks development and/or testing work, production could not run.
            • Closed

            Activity

              People

                xuelei Xuelei Fan
                wetmore Bradford Wetmore
                Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved:
                  Imported:
                  Indexed: