JDK-6825352 : support self-issued certificate in keytool
Type:Bug
Component:security-libs
Sub-Component:java.security
Affected Version:7
Priority:P4
Status:Resolved
Resolution:Fixed
OS:generic
CPU:generic
Submitted:2009-04-02
Updated:2016-07-21
Resolved:2009-04-11
The Version table provides details related to the release that this issue/RFE will be addressed.
Unresolved : Release in which this issue/RFE will be addressed. Resolved: Release in which this issue/RFE has been resolved. Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
keytool uses issuerDN==subjectDN to build a cert chain and check if a cert is self-signed. Sometimes a cert is self-issued but not self-signed, more checks are needed to make sure the issuer *is* the subject.