RFR: 8270280: security/infra/java/security/cert/CertPathValidator/certification/LetsEncryptCA.java OCSP response error

Rajan Halade rhalade at openjdk.java.net
Thu Jul 22 17:36:50 UTC 2021


I have updated revoked test certificate but this test may again fail in Sept as test certificate expire leading to OCSP error.

CA is not willing to issue test certificates with more than 90 day validity so this test will fail every quarter. I am re-thinking the CA certification testing approach to may be try a TLS connection with test websites. This will ensure that test will pass as long as CA keeps test website updated.

-------------

Commit messages:
 - 8270280: security/infra/java/security/cert/CertPathValidator/certification/LetsEncryptCA.java OCSP response error

Changes: https://git.openjdk.java.net/jdk/pull/4877/files
 Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=4877&range=00
  Issue: https://bugs.openjdk.java.net/browse/JDK-8270280
  Stats: 29 lines in 2 files changed: 0 ins; 4 del; 25 mod
  Patch: https://git.openjdk.java.net/jdk/pull/4877.diff
  Fetch: git fetch https://git.openjdk.java.net/jdk pull/4877/head:pull/4877

PR: https://git.openjdk.java.net/jdk/pull/4877



More information about the security-dev mailing list