Your changes look fine to me.
Just a minor language correction: ‘to use’ -> ‘using’ (2 instances)

> On 11 Nov 2016, at 05:11, Xuelei Fan <xuelei....@oracle.com> wrote:
> 
> Hi,
> 
> Please review this bug fix:
> 
>   http://cr.openjdk.java.net/~xuelei/8166103/webrev.00/
> 
> The current validator implementations only allow white listed critical 
> certificate extensions, and not all JDK supported extensions are known to the 
> validator.  As may result in some issues that the cert is valid, but cannot 
> pass the validation because there is a critical extension that is not white 
> listed in the validator implementation.
> 
> This fix will only check the validity of the white listed critical 
> certificate extensions, and ignore the critical certificate extensions if 
> they can be parsed with X509Certificate.
> 
> Thanks,
> Xuelei

Reply via email to