RFR: 8292033: Move jdk.X509Certificate event logic to JCA layer [v5]

Sean Coffey coffeys at openjdk.org
Fri Nov 4 15:58:01 UTC 2022


> By moving the JFR event up to the java.security.cert.CertificateFactory class, we can record all generate cert events, including those from 3rd party providers. I've also altered the logic so that an event is genertate for every generate cert call (not just ones missing from the JDK provider implementation cache)
> 
> test case also updated to capture new logic

Sean Coffey has updated the pull request incrementally with one additional commit since the last revision:

  Further code review comments and new keytool test coverage with JFR

-------------

Changes:
  - all: https://git.openjdk.org/jdk/pull/10422/files
  - new: https://git.openjdk.org/jdk/pull/10422/files/f430a3ee..e3635647

Webrevs:
 - full: https://webrevs.openjdk.org/?repo=jdk&pr=10422&range=04
 - incr: https://webrevs.openjdk.org/?repo=jdk&pr=10422&range=03-04

  Stats: 59 lines in 4 files changed: 48 ins; 4 del; 7 mod
  Patch: https://git.openjdk.org/jdk/pull/10422.diff
  Fetch: git fetch https://git.openjdk.org/jdk pull/10422/head:pull/10422

PR: https://git.openjdk.org/jdk/pull/10422



More information about the security-dev mailing list