[jdk17u-dev] Integrated: 8311644: Server should not send bad_certificate alert when the client does not send any certificates
Goetz Lindenmaier
goetz at openjdk.org
Mon Feb 23 10:41:56 UTC 2026
On Thu, 19 Feb 2026 14:04:13 GMT, Goetz Lindenmaier <goetz at openjdk.org> wrote:
> I backport this based on the change in 21.
>
> Trivial resolve of exception message in src/java.base/share/classes/sun/security/ssl/Alert.java
>
> test/jdk/sun/security/ssl/SignatureScheme/SigAlgosExtTestWithTLS12.java
> test/jdk/sun/security/ssl/SignatureScheme/SigAlgosExtTestWithTLS13.java
> Resolved Copyright.
>
> Update: needed to fix a test. The test came with backport of https://bugs.openjdk.org/browse/JDK-8350807 "Certificates using MD5 algorithm that are disabled by default are incorrectly allowed in TLSv1.3 when re-enabled" The original 8350807 included the output added by this change, which was removed in the backport. I added it again.
This pull request has now been integrated.
Changeset: 553b9f81
Author: Goetz Lindenmaier <goetz at openjdk.org>
URL: https://git.openjdk.org/jdk17u-dev/commit/553b9f81f22cd40e34f1665baf50fcbe11c246b5
Stats: 271 lines in 9 files changed: 191 ins; 24 del; 56 mod
8311644: Server should not send bad_certificate alert when the client does not send any certificates
Reviewed-by: mbaesken
Backport-of: af0985974de246af6610faa90d7c1af5ec5addc3
-------------
PR: https://git.openjdk.org/jdk17u-dev/pull/4274
More information about the jdk-updates-dev
mailing list