[8] RFR 8015571: OCSP validation fails if ocsp.responderCertSubjectName is set
Vincent Ryan
vincent.x.ryan at oracle.com
Fri Nov 15 16:25:45 UTC 2013
Please review this fix to OCSP which corrects the validation of OCSP responses when a trusted
responder has been configured.
Bug: https://bugs.openjdk.java.net/browse/JDK-8015571
Webrev: http://cr.openjdk.java.net/~vinnie/8015571/webrev.00/
The OCSP client can now handle OCSP responses from several trusted responders without
re-configuration. In addition, out-of-order or absent signer certs in an OCSP Response are also
handled correctly.
Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.org/pipermail/security-dev/attachments/20131115/9a32ae0b/attachment.htm>
More information about the security-dev
mailing list