Maintenance Notice

The site will be undergoing maintenance on 15th Dec 2017 21:00 PST to 16th Dec 2017 1:00 AM PST.
JDK-6973030 : NTLM proxy authentication fails with https
  • Type: Bug
  • Component: core-libs
  • Sub-Component:
  • Affected Version: 6u14
  • Priority: P3
  • Status: Closed
  • Resolution: Fixed
  • OS: windows
  • CPU: x86
  • Submitted: 2010-07-29
  • Updated: 2011-03-08
  • Resolved: 2011-03-08
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availabitlity Release.

To download the current JDK release, click here.
6u24-revFixed 7 b109Fixed
When a client running under Java 32 bit, 1.6.0_14, tries to connect to a server via https, and the Internet traffic goes through a NTLM authenticating proxy, this will fails. The client is using

EVALUATION A fix is being planned for JDK 6.

EVALUATION Changeset: 367b90ed38b1 Author: chegar Date: 2010-08-03 12:03 +0100 URL: 6973030: NTLM proxy authentication fails with https Reviewed-by: michaelm ! src/share/classes/sun/net/www/protocol/http/ ! test/sun/security/ssl/sun/net/www/protocol/https/HttpsURLConnection/

EVALUATION Send the "Proxy-Connection: keep-alive" header with HTTP CONNECT requests for compatibility with HTTP/1.0 proxies such as Squid. This is required for NTLM authentication. Links for more context/reference on this bug:

SUGGESTED FIX As described on add the following code to if (http.getHttpKeepAliveSet()) { if (http.usingProxy) { requests.setIfNotSet("Proxy-Connection", "keep-alive"); } } in HttpURLConnection.sendCONNECTRequest() before setPreemptiveProxyAuthentication(requests); http.writeRequests(requests, null); at line 1574