RFR: 8294985: SSLEngine throws IAE during parsing of X500Principal [v2]
Daniel Jeliński
djelinski at openjdk.org
Fri Apr 28 15:39:53 UTC 2023
On Fri, 14 Apr 2023 19:03:16 GMT, Kevin Driver <kdriver at openjdk.org> wrote:
>> Fixes: [JDK-8294985](https://bugs.openjdk.org/browse/JDK-8294985)
>
> Kevin Driver has updated the pull request incrementally with one additional commit since the last revision:
>
> updated copyright
src/java.base/share/classes/sun/security/ssl/CertificateAuthoritiesExtension.java line 284:
> 282: shc.peerSupportedAuthorities = spec.getAuthorities();
> 283: } catch (IllegalArgumentException iae) {
> 284: throw new SSLException(iae);
Suggestion:
throw shc.conContext.fatal(Alert.ILLEGAL_PARAMETER,
"Certificate authority distinguished name is not valid");
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/13466#discussion_r1180543939
More information about the security-dev
mailing list