Code review request: 7197652: Impossible to run any signed JNLP applications or applets, OCSP off by default
Xerxes Rånby
xerxes at zafena.se
Tue Oct 16 10:52:38 UTC 2012
2012-10-01 04:30, Vincent Ryan wrote:
> Please review these changes for JDK 7 to correct the trust decision when examining the signer certificate of an OCSP response. When matching two certificates the key identifiers should only be checked if present in both.
>
> http://cr.openjdk.java.net/~vinnie/7197652/webrev.00/
>
> Thanks.
Is this code covered by any of the existing JDK 7 jtreg tests?
If not then please add a new jtreg test to help with testing and verification.
Cheers
Xerxes
More information about the security-dev
mailing list