RFR: 8367104: Check for RSASSA-PSS parameters when validating certificates against algorithm constraints [v10]
Sean Mullan
mullan at openjdk.org
Thu Sep 18 13:21:56 UTC 2025
On Wed, 17 Sep 2025 21:55:54 GMT, Artur Barashev <abarashev at openjdk.org> wrote:
>> src/java.base/share/classes/sun/security/validator/PKIXValidator.java line 264:
>>
>>> 262: X509Certificate last = chain[chain.length - 1];
>>> 263: X500Principal issuer = last.getIssuerX500Principal();
>>> 264: X500Principal subject = last.getSubjectX500Principal();
>>
>> unused variable.
>
> It was there originally actually. `PKIXValidator.java` isn't being modified in this PR, I have restored it to the original state.
Ok, we can clean it up in another fix.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/27146#discussion_r2359251770
More information about the security-dev
mailing list