Bug ID: JDK-8280401 [sspi] gss_accept_sec_context leaves output

Type: Bug
Component: security-libs
Sub-Component: org.ietf.jgss

Priority: P4
Status: Resolved
Resolution: Fixed

Submitted: 2022-01-20
Updated: 2023-01-04
Resolved: 2022-01-21

Versions (Unresolved/Resolved/Fixed)

The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.

JDK 11	JDK 17	JDK 19	JDK 8
11.0.19-oracleFixed	17.0.4-oracleFixed	19 b07Fixed	8u371Fixed

The SSPI native GSS-API library does not support the acceptor side and its gss_accept_sec_context() always returns GSS_S_FAILURE. However, it also leaves output_token uninitialized and it will crash JDK's own native GSS-API bridge.

Fix request [11u] I backport this for parity with 11.0.19-oracle. Small risk, tiny change. Clean backport. SAP nighlty testing passed.
04-01-2023
A pull request was submitted for review. URL: https://git.openjdk.org/jdk11u-dev/pull/1629 Date: 2023-01-03 16:56:53 +0000
03-01-2023
Fix request [17u] I backport this for parity with 17.0.4-oracle. Small risk, tiny change. Clean backport. SAP nightly testing passed.
19-03-2022
A pull request was submitted for review. URL: https://git.openjdk.java.net/jdk17u-dev/pull/265 Date: 2022-03-18 09:07:38 +0000
18-03-2022
Changeset: 6352c020 Author: Weijun Wang <weijun@openjdk.org> Date: 2022-01-21 03:16:08 +0000 URL: https://git.openjdk.java.net/jdk/commit/6352c020c25f2701afb4fabee0cc7fcef2d407fb
21-01-2022
A pull request was submitted for review. URL: https://git.openjdk.java.net/jdk/pull/7163 Date: 2022-01-20 18:19:19 +0000
20-01-2022