United StatesChange Country, Oracle Worldwide Web Sites Communities I am a... I want to...
Bug ID: JDK-7149012 jarsigner needs not warn about cert expiration if the jar has a TSA timestamp
JDK-7149012 : jarsigner needs not warn about cert expiration if the jar has a TSA timestamp

Details
Type:
Bug
Submit Date:
2012-02-27
Status:
Closed
Updated Date:
2013-03-01
Project Name:
JDK
Resolved Date:
2012-03-14
Component:
security-libs
OS:
generic
Sub-Component:
java.security
CPU:
generic
Priority:
P4
Resolution:
Fixed
Affected Versions:
8
Fixed Versions:

Related Reports
Backport:

Sub Tasks

Description
If the cert used to sign a jar is expired, jarsigner will print out a warning, and if -strict is specified, exits with an error. However, if there is a TSA timestamp attached to the jar (and the timestamp is shown to be before the expiration), it's completely valid and jarsigner should not report any warning or error.

                                    

Comments
EVALUATION

http://hg.openjdk.java.net/jdk8/tl/jdk/rev/26ed9a64a318
                                     
2012-03-06
The new regression test is passing:
http://aurora.ru.oracle.com/functional/faces/RunDetails.xhtml?names=109374.CORELIBS-JDK8-NIGHTLY-JTREG-15

No warning message, which is expected.
                                     
2012-10-10



Hardware and Software, Engineered to Work Together