[8] 8012636: OCSP validation fails even when public key is trusted

Vincent Ryan vincent.x.ryan at oracle.com
Wed Oct 23 11:42:25 UTC 2013


On 23/10/2013 12:20, Xuelei Fan wrote:
> On 10/23/2013 6:44 PM, Vincent Ryan wrote:
>> On 22/10/2013 05:41, Xuelei Fan wrote:
>>> OCSPRequest.java
>>> ================
>>> line 79-80, Note that Debug.getInstance("certpath") may return null.
>>> Looks like don't need dump variable any more.
>>
>> Although null is returned it is not a problem since the isOn method
>> is a static.
>>
> You also call debug.println().  I think what you want to do is to dump
> debug log when "certpath" is on.  If you won't check "debug != null",
> Debug.getInstance("certpath") does not make sense, I think.

Ah. Now I understand. I'll make that correction.

>
>>>
>>> OCSPResponse.java
>>> ================
>>> line 134-135.
>>> -------------
>>> Debug.getInstance("certpath") may return null. May not need dump
>>> variable.
>>
> As above.
>
> Xuelei
>




More information about the security-dev mailing list