security/infra/java/security/cert/CertPathValidator/certification/QuoVadisCA.java fails in jdk
Baesken, Matthias
matthias.baesken at sap.com
Wed Oct 24 14:20:47 UTC 2018
Hi Rajan , I suggest we put the test security/infra/java/security/cert/CertPathValidator/certification/QuoVadisCA.java on the ProblemList.txt
until the certificate issue is resolved. What do you think ?
Best regards, Matthias
> -----Original Message-----
> From: Rajan Halade <rajan.halade at oracle.com>
> Sent: Dienstag, 18. September 2018 19:05
> To: Lindenmaier, Goetz <goetz.lindenmaier at sap.com>; Baesken, Matthias
> <matthias.baesken at sap.com>
> Cc: security-dev at openjdk.java.net
> Subject: Re:
> security/infra/java/security/cert/CertPathValidator/certification/QuoVadisC
> A.java fails in jdk
>
> We found an issue with revocation of intermedicate CA issued by QuoVadis
> which is fixed by CA now. I am waiting to get new test certificates to
> fix this bug.
>
> Thanks,
> Rajan
>
> On 9/18/18 3:06 AM, Lindenmaier, Goetz wrote:
> > Hi Rajan,
> >
> > are you working on this issue? We have this test disabled, I would like to
> run it again.
> >
> > Best regards,
> > Goetz.
> >
> >> -----Original Message-----
> >> From: security-dev <security-dev-bounces at openjdk.java.net> On Behalf
> Of
> >> Rajan Halade
> >> Sent: Mittwoch, 11. Juli 2018 17:42
> >> To: Baesken, Matthias <matthias.baesken at sap.com>; security-
> >> dev at openjdk.java.net
> >> Subject: Re:
> >>
> security/infra/java/security/cert/CertPathValidator/certification/QuoVadisC
> >> A.java fails in jdk
> >>
> >> Thanks for the report, I have filed JDK-8207059. Yes, the test certificate
> used
> >> here need to be updated.
> >>
> >> - Rajan
> >>
> >>
> >> On 7/11/18 7:43 AM, Baesken, Matthias wrote:
> >>
> >>
> >>
> >>
> >> ... and in stdout there is a better message that seems to show the
> >> reason , a certificate is expected to be "GOOD" but it has been
> revoked
> >> Fri Jan 19 15:39:57 CET 2018 .
> >>
> >> Should the test be updated with more recent certs (seems they
> >> are hardwired in the test java source) ?
> >>
More information about the security-dev
mailing list