[jdk11u] RFR: 8337664: Distrust TLS server certificates issued after Oct 2024 and anchored by Entrust Root CAs
Goetz Lindenmaier
goetz at openjdk.org
Fri Sep 6 06:05:00 UTC 2024
On Thu, 5 Sep 2024 11:31:46 GMT, Goetz Lindenmaier <goetz at openjdk.org> wrote:
> I backport this for parity with 11.0.25-oracle.
>
> src/java.base/share/classes/sun/security/validator/CADistrustPolicy.java
> * Resolved Copyright
> src/java.base/share/classes/sun/security/validator/EntrustTLSPolicy.java
> * Removed debug argument from getFingerprint() as "8270946: X509CertImpl.getFingerprint should not return the empty String" is not in 11.
Yes, according to the crypto roadmap this must be in the October update.
-------------
PR Comment: https://git.openjdk.org/jdk11u/pull/95#issuecomment-2333306545
More information about the jdk-updates-dev
mailing list