RFR: JDK-6782021: It is not possible to read local computer certificates with the SunMSCAPI provider [v2]

[Mat Carter]

On Tue, 3 May 2022 22:52:49 GMT, Mat Carter <duke at openjdk.java.net> wrote:

>> On Windows you can now access the local machine keystores using the strings "Windows-MY-LOCALMACHINE" and "Windows-ROOT-LOCALMACHINE"; note the application requires admin privileges.
>> 
>> "Windows-MY" and "Windows-ROOT" remain unchanged, however given these original keystore strings mapped to the current user, I added "Windows-MY-CURRENTUSER" and "Windows-ROOT-CURRENTUSER" so that a developer can explicitly specify the current user location. These two new strings simply map to the original two strings, i.e. no duplication of code paths etc
>> 
>> No new tests added, keystore functionality and API remains unchanged, the local machine keystore types would require the tests to run in admin mode
>> 
>> Tested on windows, passes tier1 and tier2 tests
>
> Mat Carter has updated the pull request incrementally with one additional commit since the last revision:
> 
>   replace string parameter with int and supporting constants

I don't use this API much so I don't really have an opinion as a customer regarding the format of the strings used to identify the key stores.   I'd be happy to review a separate PR but I think this falls outside the scope of this PR which specifically targets the inability to access local machine key stores (which a bug has been raised against).

note: there's also a "Windows-PRNG" which isn't a key store but the native random number generator

-------------

PR: https://git.openjdk.java.net/jdk/pull/8211