[7u] 8020940: Valid OCSP responses are rejected for backdated enquiries
Vincent Ryan
vincent.x.ryan at oracle.com
Fri Jul 19 16:39:47 UTC 2013
Please review the following change to correct the handling of backdated OCSP requests:
Bug: http://bugs.sun.com/view_bug.do?bug_id=8020940 [not yet visible]
Webrev: http://cr.openjdk.java.net/~vinnie/8020940/webrev.00
It modifies the OCSP client to verify the validity interval for an OCSP response relative to the current time.
Previously it was relative to the requested time.
Thanks.
More information about the security-dev
mailing list