https://issues.apache.org/bugzilla/show_bug.cgi?id=50887
--- Comment #1 from pkn...@mtg.de 2011-03-08 05:19:58 EST --- Mark Thomas has commented by email: >The patch raises a couple of questions for me. > - Security providers are normally configured at the JVM level. > - Patches that change one of 5 connectors usually mean the other >connectors need changing too > - There are other places where CertificateFactory is used that may >conflict with this patch. I will not define the provider in the JVM. For that I have to insert e.g. bouncycastle at the first position to not get sun security-provider for X.509 CertificateFactory. With that definition bouncycastle is used anywhere within the JVM first. This could lead to some other effects I cannot estimate. I'm not able to see if the changes are necessary for other connectors. For Http11AprProcessor and AjpProcessor it is nearly the same as for AjpArProcessor. Http11NioProcessor and Http11Processor are not using CertificateFactory. The last remark is unclear for me. With my proposed patch all other places are unchanged. So there will be no conflict. -- Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
