JDK-8274471/Incident Report 9166550 : Verification of OCSP Response signed with RSASSA-PSS fails
can comert
cancomert at gmail.com
Mon Oct 11 11:58:28 UTC 2021
Hello Andrew,
Yes I tested it and I can verify that it works with Java 18 JDK as expected.
Thank you very much for your effort.
Here is the output of my example program with debug flags enabled:
C:\work\java\jdk-18\bin\java.exe -Djava.security.auth.debug=certpath,ocsp
start program
...
certpath: Verified signature of OCSP Response
certpath: OCSP response validity interval is from Mon Oct 11 13:49:56 CEST
2021 until Mon Oct 11 14:49:56 CEST 2021
certpath: Checking validity of OCSP response on Mon Oct 11 13:49:56 CEST
2021 with allowed interval between Mon Oct 11 13:34:56 CEST 2021 and Mon
Oct 11 14:04:56 CEST 2021
certpath: -checker7 validation succeeded
certpath:
cert1 validation succeeded.
certpath: Cert path validation succeeded. (PKIX validation algorithm)
certpath: --------------------------------------------------------------
...
success
end program
Best regards,
Can
Andrew Wang <tong-kai.wang at oracle.com>, 10 Eki 2021 Paz, 08:27 tarihinde
şunu yazdı:
> Hi Mehmet,
>
>
>
> We have fixed the issue. Can you kindly verify the fix by downloading the
> latest version of JDK 18 from https://jdk.java.net/18/ and let us know
> the results?
>
>
>
> Thanks and regards,
>
>
>
> Andrew
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.org/pipermail/security-dev/attachments/20211011/367effe6/attachment.htm>
More information about the security-dev
mailing list