RFR: 8300939: sun/security/provider/certpath/OCSP/OCSPNoContentLength.java fails due to network errors [v2]
Jamil Nimeh
jnimeh at openjdk.org
Thu Feb 2 18:33:23 UTC 2023
> Hello all,
>
> This addresses a test bug where the SimpleOCSPServer would reset the connections made by a client CertPathValidator. I've made some minor changes to how the network data is read and sent from OCSP HTTP GET URLs and on responses, respectively. This will take the test off the problem list as well.
>
> This has been taken through hundreds of test runs and does not see the failure any longer where there used to be intermittent failures. Also multiple tier2 runs have been executed with no failures.
>
> - JBS: https://bugs.openjdk.org/browse/JDK-8300939
Jamil Nimeh has updated the pull request with a new target base due to a merge or a rebase. The pull request now contains 10 commits:
- merge with main
- 8300939: sun/security/provider/certpath/OCSP/OCSPNoContentLength.java fails due to network errors
- Merge with main
- Restore policy Root.java lost during merge
- Merge with main
- 8300946: Add sun/security/provider/certpath/OCSP/OCSPNoContentLength to ProblemList
- Remove dead commented code
- Throw exception directly from non 200 HTTP response codes
- Moved SimpleOCSPServer to use CountdownLatch for ready state, updated tests
- 8296343: CPVE thrown on missing content-length in OCSP response
-------------
Changes: https://git.openjdk.org/jdk/pull/12370/files
Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=12370&range=01
Stats: 55 lines in 3 files changed: 39 ins; 2 del; 14 mod
Patch: https://git.openjdk.org/jdk/pull/12370.diff
Fetch: git fetch https://git.openjdk.org/jdk pull/12370/head:pull/12370
PR: https://git.openjdk.org/jdk/pull/12370
More information about the security-dev
mailing list