Mercurial Mercurial > jdk-sandbox / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
issue with named group checking in KeyShareExtension JDK-8145252-TLS13-branch
authorxuelei
Sat, 02 Jun 2018 07:50:25 -0700
branchJDK-8145252-TLS13-branch
changeset 56659 e5ed96e446ad
parent 56658 fe938437f7ba
child 56660 66c803c3ce32
issue with named group checking in KeyShareExtension
src/java.base/share/classes/sun/security/ssl/KeyShareExtension.java file | annotate | diff | comparison | revisions 
--- a/src/java.base/share/classes/sun/security/ssl/KeyShareExtension.java	Sat Jun 02 07:24:25 2018 -0700
+++ b/src/java.base/share/classes/sun/security/ssl/KeyShareExtension.java	Sat Jun 02 07:50:25 2018 -0700
@@ -344,7 +344,7 @@
             List<SSLCredentials> credentials = new LinkedList<>();
             for (KeyShareEntry entry : spec.clientShares) {
                 NamedGroup ng = NamedGroup.valueOf(entry.namedGroupId);
-                if (ng != null && !SupportedGroups.isActivatable(
+                if (ng == null || !SupportedGroups.isActivatable(
                         shc.sslConfig.algorithmConstraints, ng)) {
                     if (SSLLogger.isOn && SSLLogger.isOn("ssl,handshake")) {
                         SSLLogger.fine(
jdk-sandbox