Code review request: 7175041: HttpTimestamper should accept https URI
Sean Mullan
sean.mullan at oracle.com
Thu Jun 7 14:14:47 UTC 2012
Looks good to me.
--Sean
On 06/07/2012 07:37 AM, Weijun Wang wrote:
> Hi All
>
> Please take a review at this
>
> http://cr.openjdk.java.net/~weijun/7175041/webrev.00/
>
> The original check is added [1] in JDK 8 so there is no need for a
> backport. I also do not intend to introduce the updated check to JDK 7
> or earlier.
>
> Noreg-trivial.
>
> Thanks
> Max
>
> [1]
> http://hg.openjdk.java.net/jdk8/tl/jdk/diff/57eb9136b73b/src/share/classes/sun/security/timestamp/HttpTimestamper.java
>
>
> -------- Original Message --------
> 7175041: HttpTimestamper should accept https URI
>
> Product: java
> Category: java
> Subcategory: classes_security
> Type: Defect
>
>
> === *Description*
> ============================================================
> sun.security.timestamp.HttpTimestamper has:
>
> public HttpTimestamper(URI tsaURI) {
> if (!tsaURI.getScheme().equalsIgnoreCase("http"))
> throw new IllegalArgumentException("TSA must be an HTTP URI");
> this.tsaURI = tsaURI;
> }
>
> It should also support TSA with a https URI.
>
More information about the security-dev
mailing list