RFR: JDK-8032573
Jamil Nimeh
jamil.j.nimeh at oracle.com
Mon Sep 29 21:11:11 UTC 2014
Hello all,
This review fixes a small regression in the generateCertificates() and
generateCRLs() methods for the CertificateFactory class. At some point,
input consisting entirely of non-certificate data ceased to throw
CertificateException or CRLException and instead returned an empty
collection. This restores the exception-throwing behavior, but only
when the entire stream is non-cert data. Cases where there is
leading/trailing text around a valid PEM-encoded certificate or CRL will
still ignore the leading/trailing data and parse the certificate/CRL
properly as before.
Bug: https://bugs.openjdk.java.net/browse/JDK-8032573
Review: http://cr.openjdk.java.net/~ascarpino/8032573/webrev.01/
Thank you,
--Jamil
More information about the security-dev
mailing list