Hi,
Please review the simple fix:
http://cr.openjdk.java.net/~xuelei/8168822/webrev/
Algorithm restrictions do not apply to trusted certs as the
application or customer has made the decision to trust the "trusted
cert". However, this point is not explicit for general developers and
users. We'd better to clarify this point explicitly.
In the update, I add a short note for each algorithm constraint security
properties:
Note: Algorithm restrictions do not apply to trusted certificates.
Doc only update, no new regression test.
Thanks,
Xuelei
