[jdk17u-dev] RFR: 8311546: Certificate name constraints improperly validated with leading period [v2]
Aleksey Shipilev
shade at openjdk.org
Thu Jan 16 11:03:11 UTC 2025
> Backporting this due to wider customer interest in aligning JDK behavior with other SSL implementations. Both patches apply cleanly. First patch does the fix. Second patch fixes the test.
>
> Additional testing:
> - [x] macos-aarch64-server-release, new test fails without the change and passes with it
> - [x] macos-aarch64-server-release, `sun/security/x509/`
> - [x] linux-x86_64-server-release, `jdk_security`
Aleksey Shipilev has updated the pull request incrementally with one additional commit since the last revision:
Backport a6be9076351b591cbc0860b1ba8f3c56319f4ffe
-------------
Changes:
- all: https://git.openjdk.org/jdk17u-dev/pull/3149/files
- new: https://git.openjdk.org/jdk17u-dev/pull/3149/files/f1b39087..8d759dd9
Webrevs:
- full: https://webrevs.openjdk.org/?repo=jdk17u-dev&pr=3149&range=01
- incr: https://webrevs.openjdk.org/?repo=jdk17u-dev&pr=3149&range=00-01
Stats: 63 lines in 1 file changed: 1 ins; 44 del; 18 mod
Patch: https://git.openjdk.org/jdk17u-dev/pull/3149.diff
Fetch: git fetch https://git.openjdk.org/jdk17u-dev.git pull/3149/head:pull/3149
PR: https://git.openjdk.org/jdk17u-dev/pull/3149
More information about the jdk-updates-dev
mailing list