RFR: 8292033: Move jdk.X509Certificate event logic to JCA layer [v3]
Weijun Wang
weijun at openjdk.org
Thu Oct 27 14:20:30 UTC 2022
On Tue, 25 Oct 2022 14:56:15 GMT, Sean Coffey <coffeys at openjdk.org> wrote:
>> By moving the JFR event up to the java.security.cert.CertificateFactory class, we can record all generate cert events, including those from 3rd party providers. I've also altered the logic so that an event is genertate for every generate cert call (not just ones missing from the JDK provider implementation cache)
>>
>> test case also updated to capture new logic
>
> Sean Coffey has updated the pull request incrementally with one additional commit since the last revision:
>
> Use X500Principal#toString()
If this event is mainly for public access through the `CertificateFactory` API, then there is no need to care about internal creation of `X509CertImpl` directly.
-------------
PR: https://git.openjdk.org/jdk/pull/10422
More information about the security-dev
mailing list