Re: KeyTool not JCE provider independent

Jan Luehe (Jan.Luehe@eng.sun.com)
Tue, 16 Mar 1999 09:51:08 -0800 (PST)

Message-Id: <199903161751.JAA04686@laguna.eng.sun.com>
Date: Tue, 16 Mar 1999 09:51:08 -0800 (PST)
From: Jan Luehe <Jan.Luehe@eng.sun.com>
Subject: Re: KeyTool not JCE provider independent
To: java-security@java.sun.com, Johannes.Farmer@iaik.tu-graz.ac.at

Johannes:

> I implemented the KeyStoreSpi (using JDK 1.2) and have now troubles using
> it with the KeyTool.
>
> Method printX509Cert(...) in KeyTool.java contains the following line
>
> (X500Name)cert.getSubjectDN()
>
> cert is an instance of java.security.cert.X509Certificate and its method
> getSubjectDN() should return a instance of Principal. But this is casted to
> sun.security.x509.X500Name.
>
> replacing this line with
> cert.getSubjectDN().toString()
> would make KeyTool provider independent.

Thanks for pointing that out.
We will fix it.

Jan