[jdk17u-dev] RFR: 6782021: It is not possible to read local computer certificates with the SunMSCAPI provider
Martijn Verburg
duke at openjdk.org
Wed Aug 10 19:35:01 UTC 2022
Backport of 5e5500cbd79b40a32c20547ea0cdb81ef6904a3d
On Windows you can now access the local machine keystores using the strings "Windows-MY-LOCALMACHINE" and "Windows-ROOT-LOCALMACHINE"; note the application requires admin privileges.
"Windows-MY" and "Windows-ROOT" remain unchanged, however given these original keystore strings mapped to the current user, I added "Windows-MY-CURRENTUSER" and "Windows-ROOT-CURRENTUSER" so that a developer can explicitly specify the current user location. These two new strings simply map to the original two strings, i.e. no duplication of code paths etc
keystore functionality and API remains unchanged, the local machine keystore types require the manual tests to run in admin mode
Tested on windows, passes tier1 (via GH Actions) and manual tests provided in the patch
-------------
Commit messages:
- Backport 5e5500cbd79b40a32c20547ea0cdb81ef6904a3d
Changes: https://git.openjdk.org/jdk17u-dev/pull/630/files
Webrev: https://webrevs.openjdk.org/?repo=jdk17u-dev&pr=630&range=00
Issue: https://bugs.openjdk.org/browse/JDK-6782021
Stats: 187 lines in 5 files changed: 155 ins; 1 del; 31 mod
Patch: https://git.openjdk.org/jdk17u-dev/pull/630.diff
Fetch: git fetch https://git.openjdk.org/jdk17u-dev pull/630/head:pull/630
PR: https://git.openjdk.org/jdk17u-dev/pull/630
More information about the jdk-updates-dev
mailing list