RFR 8241888: Mirror jdk.security.allowNonCaAnchor system property with a security one

Martin Balao mbalao at redhat.com
Wed Apr 1 21:53:27 UTC 2020


Hi Sean,

Thanks for having a look at this.

On 4/1/20 4:47 PM, Sean Mullan wrote:
> 
> 65      * System property that if set (or set to "true"), allows trust
> anchor
> 
> Change this to "System or security property ..."

Fixed.

> 
> - Update the copyright date.

Fixed.

> 
> * java.security
> 
> 1308 # X.509 v3 certificates used as Trusted Anchors (to validate signed
> code or TLS
> 
> s/Trusted/Trust

Fixed.

> 
> You should also say that if they include a Key Usage extension, the
> keyCertSign bit must be set.

Fixed.

Webrev.01:

 * http://cr.openjdk.java.net/~mbalao/webrevs/8241888/8241888.webrev.01/

Thanks,
Martin.-




More information about the security-dev mailing list