custom critical X509v3 extensions
Jan Willem Janssen
janwillem.janssen at luminis.eu
Tue Mar 24 12:53:07 UTC 2015
Hi,
When a X509TrustManager validates an endpoint certificate containing a
critical custom extension the sun.security.validator.EndEntityChecker
will always fail. While this is correct behaviour, and according to
the spec, there appears no way of adding support for custom critical
extensions on endpoint certificates?!
--
Met vriendelijke groeten | Kind regards
Jan Willem Janssen | Software Architect
+31 631 765 814
My world is revolving around INAETICS and Amdatu
Luminis Technologies B.V.
Churchillplein 1
7314 BZ Apeldoorn
+31 88 586 46 00
http://www.luminis-technologies.com
http://www.luminis.eu
KvK (CoC) 09 16 28 93
BTW (VAT) NL8169.78.566.B.01
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 817 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <https://mail.openjdk.org/pipermail/security-dev/attachments/20150324/ce154401/signature.asc>
More information about the security-dev
mailing list