[jdk8u-dev] RFR: 8345414: Google CAInterop test failures
Severin Gehwolf
sgehwolf at openjdk.org
Fri Aug 8 13:54:20 UTC 2025
On Fri, 8 Aug 2025 12:22:45 GMT, Severin Gehwolf <sgehwolf at openjdk.org> wrote:
> Looks good. Only two more test failures in `jdk/security_infra` group (which is for another patch):
>
> ```
> security/infra/java/security/cert/CertPathValidator/certification/CAInterop.java#digicerttlsrsarootg5
> security/infra/java/security/cert/CertPathValidator/certification/CAInterop.java#quovadisrootca2g3
> ```
Those two seem to be caused by the revocation certificate site not serving a revoked cert. See:
https://www.quovadisglobal.com/download-roots-crl/ and
https://knowledge.digicert.com/general-information/digicert-trusted-root-authority-certificates
Both https://digicert-tls-rsa4096-root-g5-revoked.chain-demos.digicert.com and https://quovadis-root-ca-2-g3-revoked.chain-demos.digicert.com don't properly work (in my browser as well).
-------------
PR Comment: https://git.openjdk.org/jdk8u-dev/pull/673#issuecomment-3167992961
More information about the jdk8u-dev
mailing list