[RFC][icedtea-web] PR742: Fix checking multiple levels of JAR certs for trust

Danesh Dadachanji ddadacha at redhat.com
Wed Jun 22 14:06:27 PDT 2011


Here's a patch for the JAR side of PR742, checking the cert path of a 
JAR cert for trusted CAs. Here's how to make a 2 chain certificate for 
testing purposes - http://torweb.toronto.redhat.com/~dbhole/steps

You have to add a modified version of demoCA/cacert.pem (follow step 6 
but save the copied text) in the trusted CA certs list through 

+2011-06-22  Danesh Dadachanji  <ddadacha at redhat.com>
+   * netx/net/sourceforge/jnlp/tools/JarSigner.java: Changed 
checkTrustedCerts to check through entire certPath for trusted CAs.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: PR742-jar.patch
Type: text/x-patch
Size: 1186 bytes
Desc: not available
Url : http://mail.openjdk.java.net/pipermail/distro-pkg-dev/attachments/20110622/07d3fc15/PR742-jar.patch 

More information about the distro-pkg-dev mailing list