-
Bug
-
Resolution: Fixed
-
P4
-
1.4.0
-
None
-
hopper
-
generic
-
generic
-
Verified
| Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
|---|---|---|---|---|---|---|
| JDK-2109789 | jce1.2.2beta | Valerie Peng | P4 | Resolved | Fixed | jce1.2.2beta |
Per JCE documentation, the two jurisdiction policy files need to be signed by the same signer as the JCE framework jar file.
Currently, signature check is performed as well as trust chain validation.
However, we should add an additional check which makes sure the signer of the 3 jars, i.e. two jurisdiction policy files and JCE framework file, is the same.
Currently, signature check is performed as well as trust chain validation.
However, we should add an additional check which makes sure the signer of the 3 jars, i.e. two jurisdiction policy files and JCE framework file, is the same.
- backported by
-
JDK-2109789 should enforce the signer restraint on policy files
-
- Resolved
-