[jdk17u-dev] RFR: 6782021: It is not possible to read local computer certificates with the SunMSCAPI provider
Christoph Langer
clanger at openjdk.org
Tue Aug 16 07:47:42 UTC 2022
On Wed, 10 Aug 2022 18:50:49 GMT, Martijn Verburg <duke at openjdk.org> wrote:
> Backport of 5e5500cbd79b40a32c20547ea0cdb81ef6904a3d
>
> On Windows you can now access the local machine keystores using the strings "Windows-MY-LOCALMACHINE" and "Windows-ROOT-LOCALMACHINE"; note the application requires admin privileges.
>
> "Windows-MY" and "Windows-ROOT" remain unchanged, however given these original keystore strings mapped to the current user, I added "Windows-MY-CURRENTUSER" and "Windows-ROOT-CURRENTUSER" so that a developer can explicitly specify the current user location. These two new strings simply map to the original two strings, i.e. no duplication of code paths etc
>
> keystore functionality and API remains unchanged, the local machine keystore types require the manual tests to run in admin mode
>
> Tested on windows, passes tier1 (via GH Actions) and manual tests provided in the patch
I've approved the backport and can help to sponsor it.
-------------
PR: https://git.openjdk.org/jdk17u-dev/pull/630
More information about the jdk-updates-dev
mailing list