8334670: SSLSocketOutputRecord buffer miscalculation

Reviewed-by: djelinski, ssahoo
2024-06-26 22:28:33 +00:00 · 2024-06-26 22:28:33 +00:00 · 07bc523df8
commit 07bc523df8
parent 4ebb77120a
1 changed files with 4 additions and 4 deletions
--- a/src/java.base/share/classes/sun/security/ssl/SSLSocketOutputRecord.java
+++ b/src/java.base/share/classes/sun/security/ssl/SSLSocketOutputRecord.java
@ -1,5 +1,5 @@
 /*
- * Copyright (c) 1996, 2021, Oracle and/or its affiliates. All rights reserved.
+ * Copyright (c) 1996, 2024, Oracle and/or its affiliates. All rights reserved.
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
 *
 * This code is free software; you can redistribute it and/or modify it
@ -168,12 +168,12 @@ final class SSLSocketOutputRecord extends OutputRecord implements SSLRecord {

            for (int limit = (offset + length); offset < limit;) {

-                int remains = (limit - offset) + (count - position);
-                int fragLen = Math.min(fragLimit, remains);
+                int remains = (limit - offset);
+                int fragLen = Math.min(fragLimit - count + position, remains);

                // use the buf of ByteArrayOutputStream
                write(source, offset, fragLen);
-                if (remains < fragLimit) {
+                if (remains < fragLen) {
                    return;
                }