On 5/17/2016 11:50 AM, Wang Weijun wrote: > You mentioned hacked keytool. So the X.509 v3 certs cannot be used? > In order to simplify the update (as less update as possible), I would like to keep the root certs version 1 although most of the test case should accept version 3.
BTW, it would be nice to have an option to support version 1 cert generation. Thanks, Xuelei > Thanks > Max > >> On May 17, 2016, at 11:44 AM, Xuelei Fan <xuelei....@oracle.com> wrote: >> >> Update the README with more information about the stores. >> http://cr.openjdk.java.net/~xuelei/8157035/webrev.02/ >> >> Thanks, >> Xuelei >> >> On 5/16/2016 10:37 PM, Xuelei Fan wrote: >>> On 5/16/2016 10:24 PM, Wang Weijun wrote: >>>>>> On May 16, 2016, at 9:34 PM, Xuelei Fan <xuelei....@oracle.com> wrote: >>>>>> >>>>>> On 5/16/2016 9:13 PM, Wang Weijun wrote: >>>>>>>> I downloaded the files and they match what you described below. >>>>>>>> >>>>>>>> Can you please added a text file describing how they are generated. >>>>>> The generation is straightforward with keytool. May not need an >>>>>> additional text file any more. >>>> Binary files are usually not allowed in OpenJDK. If you have to include >>>> some, add some description. >>>> >>> OK. I will add a README as follow: >>> >>> The keystore and truststore are generated with keytool. >>> >>> new webrev: >>> http://cr.openjdk.java.net/~xuelei/8157035/webrev.01/ >>> >>> Thanks, >>> Xuelei >>> >> >
