RFR: 8292033: Move jdk.X509Certificate event logic to JCA layer [v6]
Sean Coffey
coffeys at openjdk.org
Wed Nov 9 15:50:50 UTC 2022
> By moving the JFR event up to the java.security.cert.CertificateFactory class, we can record all generate cert events, including those from 3rd party providers. I've also altered the logic so that an event is genertate for every generate cert call (not just ones missing from the JDK provider implementation cache)
>
> test case also updated to capture new logic
Sean Coffey has updated the pull request incrementally with one additional commit since the last revision:
Don't record certs directly from CertAndGen/keytool
-------------
Changes:
- all: https://git.openjdk.org/jdk/pull/10422/files
- new: https://git.openjdk.org/jdk/pull/10422/files/e3635647..dda445fd
Webrevs:
- full: https://webrevs.openjdk.org/?repo=jdk&pr=10422&range=05
- incr: https://webrevs.openjdk.org/?repo=jdk&pr=10422&range=04-05
Stats: 34 lines in 3 files changed: 1 ins; 28 del; 5 mod
Patch: https://git.openjdk.org/jdk/pull/10422.diff
Fetch: git fetch https://git.openjdk.org/jdk pull/10422/head:pull/10422
PR: https://git.openjdk.org/jdk/pull/10422
More information about the security-dev
mailing list