[jdk17u-dev] RFR: 8273236: keytool does not accurately warn about algorithms that are disabled but have additional constraints
Goetz Lindenmaier
goetz at openjdk.org
Thu Oct 13 19:27:35 UTC 2022
I backport this for parity with 17.0.6-oracle.
The change applies clean.
But I had to adapt the calls to CertPathConstraintsParameters(Key, ...)
In 17, it has only three arguments, since 18 it has four.
The fourth argument was added in "JDK-8243585: AlgorithmChecker::check
throws confusing exception when it rejects the signer key"
-------------
Commit messages:
- Adapt CertPathConstraintsParameters(Key, ...) calls.
- Backport c2ee1b33c37e6f2848dc8b3e5417b93b1dac1112
Changes: https://git.openjdk.org/jdk17u-dev/pull/789/files
Webrev: https://webrevs.openjdk.org/?repo=jdk17u-dev&pr=789&range=00
Issue: https://bugs.openjdk.org/browse/JDK-8273236
Stats: 431 lines in 3 files changed: 377 ins; 0 del; 54 mod
Patch: https://git.openjdk.org/jdk17u-dev/pull/789.diff
Fetch: git fetch https://git.openjdk.org/jdk17u-dev pull/789/head:pull/789
PR: https://git.openjdk.org/jdk17u-dev/pull/789
More information about the jdk-updates-dev
mailing list