RFR: 8330217: Spurious warning from jarsigner -verify when keystore with intermediate CA is used [v2]
Hai-May Chao
hchao at openjdk.org
Tue Jul 30 21:51:34 UTC 2024
On Tue, 30 Jul 2024 15:07:39 GMT, Weijun Wang <weijun at openjdk.org> wrote:
>> test/jdk/sun/security/tools/jarsigner/ByAlias.java line 91:
>>
>>> 89: kt("-delete -alias ee");
>>> 90: js("-verify a.jar")
>>> 91: .shouldContain("not signed by alias in this keystore");
>>
>> As this PR changes `aliasNotInStore` no longer a severe warning, suggest adding -strict to test the exit code.
>
> Good idea. New commit pushed.
Thanks to verify the exit code is not 32. Is it doable to have a test for aliasNotInStore which is not emitting a non-zero exit code?
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/19701#discussion_r1697628126
More information about the security-dev
mailing list