git: openjdk/jdk17u-dev: 8311644: Server should not send bad_certificate alert when the client does not send any certificates
Goetz Lindenmaier
goetz at openjdk.org
Mon Feb 23 10:40:08 UTC 2026
Changeset: 553b9f81
Branch: master
Author: Goetz Lindenmaier <goetz at openjdk.org>
Date: 2026-02-23 10:38:31 +0000
URL: https://git.openjdk.org/jdk17u-dev/commit/553b9f81f22cd40e34f1665baf50fcbe11c246b5
8311644: Server should not send bad_certificate alert when the client does not send any certificates
Reviewed-by: mbaesken
Backport-of: af0985974de246af6610faa90d7c1af5ec5addc3
! src/java.base/share/classes/sun/security/ssl/Alert.java
! src/java.base/share/classes/sun/security/ssl/CertificateMessage.java
+ test/jdk/javax/net/ssl/SSLSession/CertMsgCheck.java
! test/jdk/javax/net/ssl/SSLSession/CheckSessionContext.java
! test/jdk/javax/net/ssl/templates/TLSBase.java
! test/jdk/sun/security/ssl/DHKeyExchange/LegacyDHEKeyExchange.java
! test/jdk/sun/security/ssl/SignatureScheme/MD5NotAllowedInTLS13CertificateSignature.java
! test/jdk/sun/security/ssl/SignatureScheme/SigAlgosExtTestWithTLS12.java
! test/jdk/sun/security/ssl/SignatureScheme/SigAlgosExtTestWithTLS13.java
More information about the jdk-updates-changes
mailing list