RFR: JDK-8132942: ServerHandshaker should not throw SSLHandshakeException when CertificateStatus constructor is called with invalid arguments
Jamil Nimeh
jamil.j.nimeh at oracle.com
Wed Mar 2 16:48:34 UTC 2016
Hello all, this fixes a minor issue with OCSP stapling, where we now do
the argument checking up-front before attempting to instantiate the
CertificateStatus handshake message object. Also I've pulled out the
OCSP stapling processing from within the clientHello method since it
already was really long and placed it in its own private method.
Bug: https://bugs.openjdk.java.net/browse/JDK-8132942
Webrev: http://cr.openjdk.java.net/~jnimeh/reviews/8132942/webrev.01/
Thanks,
--Jamil
More information about the security-dev
mailing list