[icedtea-web] RFC: PR771: IcedTea-Web certificate verification code does not use the right API
ddadacha at redhat.com
Tue Aug 9 14:27:35 PDT 2011
Looks good to me. Tested it with a few JNLPs from the IcedTea-Web-Tests
wiki page too.
Okay for HEAD.
On 09/08/11 05:18 PM, Deepak Bhole wrote:
> Attached patch fixes an issue Danesh found whereby certificates using
> a different signature algorithm than the certificate in the store are
> marked untrusted even when they shouldn't be.
> Okay for HEAD?
> 2011-08-09 Deepak Bhole<dbhole at redhat.com>
> PR771: IcedTea-Web certificate verification code does not use the right
> * netx/net/sourceforge/jnlp/security/CertificateUtils.java
> (inKeyStores): Use Certificate.verify to correctly verify a certificate
> against a public key in the store.
More information about the distro-pkg-dev