[jdk11u] RFR: 8337664: Distrust TLS server certificates issued after Oct 2024 and anchored by Entrust Root CAs
Goetz Lindenmaier
goetz at openjdk.org
Thu Sep 5 11:39:35 UTC 2024
I backport this for parity with 11.0.25-oracle.
src/java.base/share/classes/sun/security/validator/CADistrustPolicy.java
* Resolved Copyright
src/java.base/share/classes/sun/security/validator/EntrustTLSPolicy.java
* Removed debug argument from getFingerprint() as "8270946: X509CertImpl.getFingerprint should not return the empty String" is not in 11.
-------------
Commit messages:
- Resolve and fix build
- Backport 7d49c52272b54070a13b02708dd7ce5f8e375a06
Changes: https://git.openjdk.org/jdk11u/pull/95/files
Webrev: https://webrevs.openjdk.org/?repo=jdk11u&pr=95&range=00
Issue: https://bugs.openjdk.org/browse/JDK-8337664
Stats: 1103 lines in 13 files changed: 1101 ins; 0 del; 2 mod
Patch: https://git.openjdk.org/jdk11u/pull/95.diff
Fetch: git fetch https://git.openjdk.org/jdk11u.git pull/95/head:pull/95
PR: https://git.openjdk.org/jdk11u/pull/95
More information about the jdk-updates-dev
mailing list