[8] 8012636: OCSP validation fails even when public key is trusted

Xuelei Fan xuelei.fan at oracle.com
Wed Oct 23 11:20:53 UTC 2013


On 10/23/2013 6:44 PM, Vincent Ryan wrote:
> On 22/10/2013 05:41, Xuelei Fan wrote:
>> OCSPRequest.java
>> ================
>> line 79-80, Note that Debug.getInstance("certpath") may return null.
>> Looks like don't need dump variable any more.
> 
> Although null is returned it is not a problem since the isOn method
> is a static.
> 
You also call debug.println().  I think what you want to do is to dump
debug log when "certpath" is on.  If you won't check "debug != null",
Debug.getInstance("certpath") does not make sense, I think.

>>
>> OCSPResponse.java
>> ================
>> line 134-135.
>> -------------
>> Debug.getInstance("certpath") may return null. May not need dump
>> variable.
> 
As above.

Xuelei




More information about the security-dev mailing list