> There is no need to check for the KeyUsage extension when validating a TSA > certificate. > > A test is modified where a TSA cert has a KeyUsage but without the > DigitalSignature bit.
Weijun Wang has updated the pull request incrementally with one additional commit since the last revision: check either KU_SIGNATURE or KU_NON_REPUDIATION ------------- Changes: - all: https://git.openjdk.java.net/jdk/pull/6416/files - new: https://git.openjdk.java.net/jdk/pull/6416/files/a5b3bc86..2bd3c546 Webrevs: - full: https://webrevs.openjdk.java.net/?repo=jdk&pr=6416&range=02 - incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=6416&range=01-02 Stats: 10 lines in 1 file changed: 9 ins; 0 del; 1 mod Patch: https://git.openjdk.java.net/jdk/pull/6416.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6416/head:pull/6416 PR: https://git.openjdk.java.net/jdk/pull/6416
