[8] RFR 8015571: OCSP validation fails if ocsp.responderCertSubjectName is set
Sean Mullan
sean.mullan at oracle.com
Fri Nov 15 20:39:49 UTC 2013
Looks good.
--Sean
On 11/15/2013 11:25 AM, Vincent Ryan wrote:
> Please review this fix to OCSP which corrects the validation of OCSP
> responses when a trusted
> responder has been configured.
>
> Bug: https://bugs.openjdk.java.net/browse/JDK-8015571
> Webrev: http://cr.openjdk.java.net/~vinnie/8015571/webrev.00/
>
> The OCSP client can now handle OCSP responses from several trusted
> responders without
> re-configuration. In addition, out-of-order or absent signer certs in an
> OCSP Response are also
> handled correctly.
>
> Thanks.
More information about the security-dev
mailing list