> Can I please get a review of this change which proposes to fix > https://bugs.openjdk.org/browse/JDK-8326381? > > As noted in the JBS issue, the implementation in `setNeedClientAuth()` and > `setWantClientAuth()` of `com.sun.net.httpserver.HttpsParameters` wasn't > matching the API specification. The commit in this PR fixes that issue and it > now matches the API specification as well as what is done in > `javax.net.ssl.SSLParameters` class. > > Additionally, as noted in the JBS issue, the (internal class) > `sun.net.httpserver.SSLStreams` had a bug where it could end up resetting the > `needClientAuth` flag on the `SSLEngine` because of the way the > `setNeedClientAuth()` and `setWantClientAuth()` methods were being called on > the `SSLEngine`. This too has been fixed in this PR. > > A new jtreg test has been introduced to reproduce the issue in the > `HttpsParameters` class and verify this fix.
Jaikiran Pai has updated the pull request incrementally with two additional commits since the last revision: - John's review - set need/wantClientAuth to false and expect both need/wantClientAuth to be false - assert that client auth was indeed initiated by server during TLS handshake ------------- Changes: - all: https://git.openjdk.org/jdk/pull/17940/files - new: https://git.openjdk.org/jdk/pull/17940/files/86323a16..0d6a6a0c Webrevs: - full: https://webrevs.openjdk.org/?repo=jdk&pr=17940&range=05 - incr: https://webrevs.openjdk.org/?repo=jdk&pr=17940&range=04-05 Stats: 156 lines in 1 file changed: 137 ins; 3 del; 16 mod Patch: https://git.openjdk.org/jdk/pull/17940.diff Fetch: git fetch https://git.openjdk.org/jdk.git pull/17940/head:pull/17940 PR: https://git.openjdk.org/jdk/pull/17940
