[jdk17u-dev] Integrated: 8273236: keytool does not accurately warn about algorithms that are disabled but have additional constraints
Goetz Lindenmaier
goetz at openjdk.org
Tue Oct 18 12:07:39 UTC 2022
On Thu, 13 Oct 2022 17:19:45 GMT, Goetz Lindenmaier <goetz at openjdk.org> wrote:
> I backport this for parity with 17.0.6-oracle.
>
> The change applies clean.
>
> But I had to adapt the calls to CertPathConstraintsParameters(Key, ...)
> In 17, it has only three arguments, since 18 it has four.
> The fourth argument was added in "JDK-8243585: AlgorithmChecker::check
> throws confusing exception when it rejects the signer key"
This pull request has now been integrated.
Changeset: c9c8564d
Author: Goetz Lindenmaier <goetz at openjdk.org>
URL: https://git.openjdk.org/jdk17u-dev/commit/c9c8564d7c094c4dad595c8908f2b37a00130fb6
Stats: 431 lines in 3 files changed: 377 ins; 0 del; 54 mod
8273236: keytool does not accurately warn about algorithms that are disabled but have additional constraints
Reviewed-by: phh, mbaesken
Backport-of: c2ee1b33c37e6f2848dc8b3e5417b93b1dac1112
-------------
PR: https://git.openjdk.org/jdk17u-dev/pull/789
More information about the jdk-updates-dev
mailing list