RFR: 8225433: Clarify behavior of PKIXParameters.setRevocationEnabled when PKIXRevocationChecker is used [v2]

Sean Mullan mullan at openjdk.java.net
Wed Apr 27 12:48:29 UTC 2022


> This change improves the specification for the case when a `PKIXRevocationChecker` is supplied as one of the `CertPathChecker` parameters. Specifically, it makes it more clear that a `PKIXRevocationChecker` overrides the default revocation checking mechanism of a PKIX service provider, and will be used to check revocation irrespective of the setting of the RevocationEnabled parameter.
> 
> Will also file a CSR.

Sean Mullan has updated the pull request incrementally with one additional commit since the last revision:

  Change wording of "However".

-------------

Changes:
  - all: https://git.openjdk.java.net/jdk/pull/8287/files
  - new: https://git.openjdk.java.net/jdk/pull/8287/files/36a0ff13..99ee66f3

Webrevs:
 - full: https://webrevs.openjdk.java.net/?repo=jdk&pr=8287&range=01
 - incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=8287&range=00-01

  Stats: 4 lines in 1 file changed: 0 ins; 0 del; 4 mod
  Patch: https://git.openjdk.java.net/jdk/pull/8287.diff
  Fetch: git fetch https://git.openjdk.java.net/jdk pull/8287/head:pull/8287

PR: https://git.openjdk.java.net/jdk/pull/8287


More information about the security-dev mailing list