hg: jdk8/tl/jdk: 7012364: test/java/util/Locale/LocaleCategory.sh fails on Cygwin

2011-07-11 Thread yuka . kamiya
Changeset: 5adf431673ac Author:peytoia Date: 2011-07-12 07:32 +0900 URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/5adf431673ac 7012364: test/java/util/Locale/LocaleCategory.sh fails on Cygwin Reviewed-by: okutsu ! test/java/util/Locale/LocaleCategory.sh

Re: complete certificate path validation

2011-07-11 Thread Xuelei Fan
On 7/12/2011 9:59 AM, David Pomeroy wrote: > Hi Xuelei, > > The requirement is to keep the client certificate as small as possible. > I'd rather not have to store the sub CA certificate on the client. > > I see that the server is sending a "certificate request" as part of the > TLS handshake pro

Re: complete certificate path validation

2011-07-11 Thread David Pomeroy
Hi Xuelei, The requirement is to keep the client certificate as small as possible. I'd rather not have to store the sub CA certificate on the client. I see that the server is sending a "certificate request" as part of the TLS handshake protocol. The DNs of the trusted certificates are specified

Re: complete certificate path validation

2011-07-11 Thread Xuelei Fan
Hi Dave, What's the underlying requirements that the client cannot send a full certification path? That's not the way TLS works. You may be also interesting in the post, "Best Practice: to Include the Complete Certificate Chain in the KeyStore", http://sim.ivi.co/2011/06/best-practice-to-include-

complete certificate path validation

2011-07-11 Thread David Pomeroy
Hello All, I'm trying to figure out if a certain security configuration is supported in openJDK or not. I want to do client authentication at the server with one trusted root self-signed anchor certificate. Then I want the client to send up only a client certificate, that was issued by a subordi

Re: Code review request: 7064075 Security libraries don't build with javac -Xlint:all,-deprecation -Werror

2011-07-11 Thread Alexandre Boulgakov
Thanks, Dave. I didn't know that existed. -Sasha On 7/11/2011 3:39 PM, David Schlosnagle wrote: On Mon, Jul 11, 2011 at 4:56 PM, Alexandre Boulgakov wrote: Could you please review these changes? Bug detail: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=7064075 webrev: http://cr.openjdk

Re: Code review request: 7064075 Security libraries don't build with javac -Xlint:all,-deprecation -Werror

2011-07-11 Thread David Schlosnagle
On Mon, Jul 11, 2011 at 4:56 PM, Alexandre Boulgakov wrote: > Could you please review these changes? > > Bug detail: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=7064075 > webrev: http://cr.openjdk.java.net/~jjg/7076075/ > > Summary: > > Small changes to Java files to remove most build warni

Code review request: 7064075 Security libraries don't build with javac -Xlint:all,-deprecation -Werror

2011-07-11 Thread Alexandre Boulgakov
Hello Brad, Could you please review these changes? Bug detail: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=7064075 webrev: http://cr.openjdk.java.net/~jjg/7076075/ Summary: * Small changes to Java files to remove most build warnings. * Small changes to relevant makefiles to preven