Your changes look fine to me. Just a minor language correction: ‘to use’ -> ‘using’ (2 instances)
> On 11 Nov 2016, at 05:11, Xuelei Fan <xuelei....@oracle.com> wrote: > > Hi, > > Please review this bug fix: > > http://cr.openjdk.java.net/~xuelei/8166103/webrev.00/ > > The current validator implementations only allow white listed critical > certificate extensions, and not all JDK supported extensions are known to the > validator. As may result in some issues that the cert is valid, but cannot > pass the validation because there is a critical extension that is not white > listed in the validator implementation. > > This fix will only check the validity of the white listed critical > certificate extensions, and ignore the critical certificate extensions if > they can be parsed with X509Certificate. > > Thanks, > Xuelei