Bug ID: JDK-7060095 Required SSLEngine output buffer sizes are too large for some packets.

JDK-7060095 : Required SSLEngine output buffer sizes are too large for some packets.

Type: Enhancement
Component: security-libs
Sub-Component: javax.net.ssl
Affected Version: 8

Priority: P3
Status: Closed
Resolution: Duplicate
OS: generic
CPU: generic

Submitted: 2011-06-27
Updated: 2014-12-03
Resolved: 2014-12-03

Versions (Unresolved/Resolved/Fixed)

The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.

Other
tbd_majorResolved

Related Reports

Duplicate :

JDK-8043758 - JEP 219: Datagram Transport Layer Security (DTLS)

Description

For the intitial implementation of SSLEngine, I simply insisted that the outbound buffers be large enough to hold the max sized packet.  

     * We can be smarter about estimating smaller buffer sizes later.
     * For now, force it to be large enough to handle any
     * valid SSL/TLS record.

As I said then, this can be optimized.

We may want to do in conjunction with:

    6581437:  SSLEngine wastes over 32K per instance

Comments

We would support customizable packet size in JDK-8043758.

03-12-2014

EVALUATION Optimize away...

27-06-2011