[jdk21u-dev] RFR: 8311546: Certificate name constraints improperly validated with leading period [v2]
Aleksey Shipilev
shade at openjdk.org
Thu Jan 16 10:29:12 UTC 2025
> Backporting this due to wider customer interest in aligning JDK behavior with other SSL implementations. Both patches apply cleanly. First patch does the fix. Second patch fixes the test.
>
> Additional testing:
> - [x] macos-aarch64-server-release, new test fails without the change, passes with it
> - [x] macos-aarch64-server-release, `sun/security/x509/`
> - [x] linux-x86_64-server-release, `jdk_security`
Aleksey Shipilev has updated the pull request incrementally with one additional commit since the last revision:
Backport a6be9076351b591cbc0860b1ba8f3c56319f4ffe
-------------
Changes:
- all: https://git.openjdk.org/jdk21u-dev/pull/1268/files
- new: https://git.openjdk.org/jdk21u-dev/pull/1268/files/6770ee56..6a700088
Webrevs:
- full: https://webrevs.openjdk.org/?repo=jdk21u-dev&pr=1268&range=01
- incr: https://webrevs.openjdk.org/?repo=jdk21u-dev&pr=1268&range=00-01
Stats: 63 lines in 1 file changed: 1 ins; 44 del; 18 mod
Patch: https://git.openjdk.org/jdk21u-dev/pull/1268.diff
Fetch: git fetch https://git.openjdk.org/jdk21u-dev.git pull/1268/head:pull/1268
PR: https://git.openjdk.org/jdk21u-dev/pull/1268
More information about the jdk-updates-dev
mailing list