RFR: 8347946: Add API note that caller should validate/trust signers to the getCertificates and getCodeSigners methods of JarEntry and JarURLConnection
Sean Mullan
mullan at openjdk.org
Fri Feb 14 16:42:11 UTC 2025
On Fri, 14 Feb 2025 13:57:12 GMT, Sean Mullan <mullan at openjdk.org> wrote:
> > Hello Sean, given the assertable change to the API documentation of `java.net.JarURLConnection.getCertificates()`, which now specifies the order of the returned certificates, would this require a CSR?
>
> Yes, I think we should. I'll do that.
Please review the CSR at https://bugs.openjdk.org/browse/JDK-8350117. Thanks.
-------------
PR Comment: https://git.openjdk.org/jdk/pull/23616#issuecomment-2659794172
More information about the core-libs-dev
mailing list