RFR: 8371721: Refactor checkTrusted methods in X509TrustManagerImpl [v4]
Artur Barashev
abarashev at openjdk.org
Thu Dec 11 19:11:19 UTC 2025
On Thu, 11 Dec 2025 18:54:24 GMT, Sean Coffey <coffeys at openjdk.org> wrote:
>> Yes, we have a check for session not being null there: `session instanceof ExtendedSSLSession`
>
> fair enough. SupportedSignatureAlgorithmConstraints constructor caters for this scenario at moment.
Yes, if session is `null` we would allocate the constraints and then fail, before the refactoring we failed before allocating constraints. In practice, session is never null when we reach that code though.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/28275#discussion_r2611753980
More information about the security-dev
mailing list