[7u] 8020940: Valid OCSP responses are rejected for backdated enquiries
Sean Mullan
sean.mullan at oracle.com
Fri Jul 19 17:03:20 UTC 2013
Looks good.
--Sean
On 07/19/2013 12:39 PM, Vincent Ryan wrote:
> Please review the following change to correct the handling of backdated OCSP requests:
>
> Bug: http://bugs.sun.com/view_bug.do?bug_id=8020940 [not yet visible]
> Webrev: http://cr.openjdk.java.net/~vinnie/8020940/webrev.00
>
> It modifies the OCSP client to verify the validity interval for an OCSP response relative to the current time.
> Previously it was relative to the requested time.
> Thanks.
>
More information about the security-dev
mailing list