Re: RFR 8180289: jarsigner treats timestamped signed jar invalid after the signer cert expires

> On Oct 27, 2017, at 3:58 AM, Sean Mullan wrote: > > - test/jdk/sun/security/tools/jarsigner/TimestampCheck.java > > 65 * @bug 6543842 6543440 6939248 8009636 8024302 8163304 8169911 8166222 > 8180289 > > should not include 8166222 Yes. > > 346 // 8166222: unvalidated TS

Re: RFR 8180289: jarsigner treats timestamped signed jar invalid after the signer cert expires

- test/jdk/sun/security/tools/jarsigner/TimestampCheck.java 65 * @bug 6543842 6543440 6939248 8009636 8024302 8163304 8169911 8166222 8180289 should not include 8166222 346 // 8166222: unvalidated TSA cert chain 347 sign("tsnoca") 348

RFR 8180289: jarsigner treats timestamped signed jar invalid after the signer cert expires

Please review the fix at http://cr.openjdk.java.net/~weijun/8180289/webrev.00/ The code change contains: - Fix the bug by passing the timestamp to Validator::validate. - CertPath validation on timestamp signer cert and related warning messages - Output change: "chain not validated" -> "inval