Code review request: 7197652: Impossible to run any signed JNLP applications or applets, OCSP off by default
Vincent Ryan
vincent.x.ryan at oracle.com
Mon Oct 1 11:30:27 UTC 2012
Please review these changes for JDK 7 to correct the trust decision when examining the signer certificate of an OCSP response. When matching two certificates the key identifiers should only be checked if present in both.
http://cr.openjdk.java.net/~vinnie/7197652/webrev.00/
Thanks.
More information about the security-dev
mailing list