diff --git a/src/java/org/apache/cassandra/auth/RoleOptions.java b/src/java/org/apache/cassandra/auth/RoleOptions.java
index 1205d34f9b65..b00aa3f58592 100644
--- a/src/java/org/apache/cassandra/auth/RoleOptions.java
+++ b/src/java/org/apache/cassandra/auth/RoleOptions.java
@@ -107,7 +107,7 @@ public Optional<Map<String, String>> getCustomOptions()
      * - Ensure that only a subset of the options supported by the configured IRoleManager are set
      * - Validate the type of any option values present.
      * Should either condition fail, then InvalidRequestException is thrown. This method is called
-     * during validation of CQL statements, so the IRE results in a error response to the client.
+     * during validation of CQL statements, so the IRE results in an error response to the client.
      *
      * @throws InvalidRequestException if any options which are not supported by the configured IRoleManager
      *     are set or if any option value is of an incorrect type.
diff --git a/src/java/org/apache/cassandra/net/InboundConnectionInitiator.java b/src/java/org/apache/cassandra/net/InboundConnectionInitiator.java
index 4c31adf2a586..b35986d932a1 100644
--- a/src/java/org/apache/cassandra/net/InboundConnectionInitiator.java
+++ b/src/java/org/apache/cassandra/net/InboundConnectionInitiator.java
@@ -503,7 +503,7 @@ protected void decode(ChannelHandlerContext ctx, ByteBuf in, List<Object> out) t
 
             if (SslHandler.isEncrypted(in))
             {
-                // Connection uses SSL/TLS, replace the detection handler with a SslHandler and so use encryption.
+                // Connection uses SSL/TLS, replace the detection handler with an SslHandler and so use encryption.
                 SslHandler sslHandler = getSslHandler("replacing optional", ctx.channel(), encryptionOptions);
                 ctx.pipeline().replace(this, "ssl", sslHandler);
             }