Please review the patch below:
---
a/src/java.security.jgss/share/classes/javax/security/auth/kerberos/KeyTab.java
+++
b/src/java.security.jgss/share/classes/javax/security/auth/kerberos/KeyTab.java
@@ -303,13 +303,11 @@
/**
* Checks if the keytab file exists. Implementation of this method
* should make sure that the result matches the latest status of the
* keytab file.
- * <p>
- * The caller can use the result to determine if it should fallback to
- * another mechanism to read the keys.
+ *
* @return true if the keytab file exists; false otherwise.
* @throws SecurityException if a security manager exists and the read
* access to the keytab file is not permitted
*/
public boolean exists() {
The spec here is not clear and even our own JGSS SubjectComber looks into both
KeyTab and KerberosKey and there is no fallback of any kind.
Do you think this is worth a CSR?
Thanks,
Max
