Eclipse
/
jetty.project
mirror of https://github.com/jetty/jetty.project.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Issue #2010 Support FIPs Key Managers (#2044) 

Issue #2010 Support FIPs Key Managers, by only wrapping the default Key Manager if we have wildcard CN's or more than 1 non wild CN.  FIPs users will need to install a
keystore than has no multiple certificates than can only be resolved by SNI. They will also need to have no certificate aliases.

Signed-off-by: Greg Wilkins <gregw@webtide.com>
This commit is contained in:
Greg Wilkins 2017-12-14 00:15:58 +01:00 committed by GitHub
parent ce819b5430
commit 8660055574
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
jetty-util/src/main/java/org/eclipse/jetty/util/ssl/SslContextFactory.java
View File

@ -1122,7 +1122,7 @@ public class SslContextFactory extends AbstractLifeCycle implements Dumpable
}
}
if (!_certHosts.isEmpty() || !_certWilds.isEmpty())
if (!_certWilds.isEmpty() || _certHosts.size()>1)
{
for (int idx = 0; idx < managers.length; idx++)
{