custom critical X509v3 extensions

Xuelei Fan xuelei.fan at oracle.com
Wed Apr 1 05:53:39 UTC 2015


What's the requirements for the customization?  If required,
alternatively, developer can customize the trust manager instead.

Xuelei

On 3/24/2015 8:53 PM, Jan Willem Janssen wrote:
> Hi,
> 
> When a X509TrustManager validates an endpoint certificate containing a
> critical custom extension the sun.security.validator.EndEntityChecker
> will always fail. While this is correct behaviour, and according to
> the spec, there appears no way of adding support for custom critical
> extensions on endpoint certificates?!
> 
> --
> Met vriendelijke groeten | Kind regards
> 
> Jan Willem Janssen | Software Architect
> +31 631 765 814
> 
> My world is revolving around INAETICS and Amdatu
> 
> Luminis Technologies B.V.
> Churchillplein 1
> 7314 BZ   Apeldoorn
> +31 88 586 46 00
> 
> http://www.luminis-technologies.com
> http://www.luminis.eu
> 
> KvK (CoC) 09 16 28 93
> BTW (VAT) NL8169.78.566.B.01
> 



More information about the security-dev mailing list