RFR: 8270280: security/infra/java/security/cert/CertPathValidator/certification/LetsEncryptCA.java OCSP response error
Rajan Halade
rhalade at openjdk.java.net
Thu Jul 22 17:36:50 UTC 2021
I have updated revoked test certificate but this test may again fail in Sept as test certificate expire leading to OCSP error.
CA is not willing to issue test certificates with more than 90 day validity so this test will fail every quarter. I am re-thinking the CA certification testing approach to may be try a TLS connection with test websites. This will ensure that test will pass as long as CA keeps test website updated.
-------------
Commit messages:
- 8270280: security/infra/java/security/cert/CertPathValidator/certification/LetsEncryptCA.java OCSP response error
Changes: https://git.openjdk.java.net/jdk/pull/4877/files
Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=4877&range=00
Issue: https://bugs.openjdk.java.net/browse/JDK-8270280
Stats: 29 lines in 2 files changed: 0 ins; 4 del; 25 mod
Patch: https://git.openjdk.java.net/jdk/pull/4877.diff
Fetch: git fetch https://git.openjdk.java.net/jdk pull/4877/head:pull/4877
PR: https://git.openjdk.java.net/jdk/pull/4877
More information about the security-dev
mailing list