On Sun, Apr 27, 2014 at 9:05 PM, Emmanuel Lécharny <elecha...@gmail.com>wrote:
> Le 4/27/14 1:09 AM, Emmanuel Lécharny a écrit : > > Le 4/23/14 5:09 PM, Jeff MAURY a écrit : > >> - SSL: We've refactored the SSL process to be more event oriented, > but I > >> think we should complete it, mainly related to rehandshake > > There is also something we must do : currently, we initialize the > > SSLEngine with no TrustManager, no KeyManager. We don't have anything > > setup if we want to authenticate client.$ > > Of course, one can set those elements, but it would be cool to have them > set by default. > > Rigth now, this is done by passing a SslContext whch is created from the > outside : > > > > httpServer.getSessionConfig().setSslContext(BogusSslContextFactory.getInstance(true)); > > We could probably improve this. > > besides this there is a possible issue in SSL handshake code, see http://markmail.org/thread/n6gng4lqfs6k5ay3 I didn't spend enough time on chase this down > > -- > Regards, > Cordialement, > Emmanuel Lécharny > www.iktek.com > > -- Kiran Ayyagari http://keydap.com