Hi
I have a special requirement for one of my applications where I need the servers nounce (Handshaker.srv_random) when verifying the client certificate. Yet JSSEs X509TrustManager only passes me the certificate, no other information of the handshake.
I have located the place, where checkClientTrusted is called (inside ServerHandshaker) and it would be easy to extend it to also allow some X509CustomTrustManager to be called with all required information. Yet this would require me to recompile JSSE...
I also found jsse sources in openjdk.
Now for my questions:
- What is the easiest way to compile jsse from openjdk?
- Can the resulting jsse.jar be used as a replacement for the (original) sun jre as a replacement for the included jsse.jar?
- Is there another (more standard compliant) way to archive what I am trying to do? I did not find a hook to use my own handshaker...
Regards, Steffen