Code review request: 7175041: HttpTimestamper should accept https URI
Weijun Wang
weijun.wang at oracle.com
Thu Jun 7 11:37:25 UTC 2012
Hi All
Please take a review at this
http://cr.openjdk.java.net/~weijun/7175041/webrev.00/
The original check is added [1] in JDK 8 so there is no need for a
backport. I also do not intend to introduce the updated check to JDK 7
or earlier.
Noreg-trivial.
Thanks
Max
[1]
http://hg.openjdk.java.net/jdk8/tl/jdk/diff/57eb9136b73b/src/share/classes/sun/security/timestamp/HttpTimestamper.java
-------- Original Message --------
7175041: HttpTimestamper should accept https URI
Product: java
Category: java
Subcategory: classes_security
Type: Defect
=== *Description*
============================================================
sun.security.timestamp.HttpTimestamper has:
public HttpTimestamper(URI tsaURI) {
if (!tsaURI.getScheme().equalsIgnoreCase("http"))
throw new IllegalArgumentException("TSA must be an HTTP URI");
this.tsaURI = tsaURI;
}
It should also support TSA with a https URI.
More information about the security-dev
mailing list