RFR: 8328638: Fallback option for POST-only OCSP requests [v5]

[Rajan Halade]

On Mon, 25 Mar 2024 19:24:39 GMT, Aleksey Shipilev <shade at openjdk.org> wrote:

>> See the rationale/discussion in the bug. This patch introduces the option that allows to restore pre-[JDK-8179503](https://bugs.openjdk.org/browse/JDK-8179503) behavior. The default behavior does not change. Better suggestions for flag name are welcome.
>> 
>> Additional testing:
>>  - [x] `jdk_security` passes out of the box (includes new test config)
>>  - [x]  `jdk_security` passes with flag override
>>  - [x] Eyeballing `GetPostTests` amended debugging output, `GET`-s are used by default for small requests, `POST`-s are used for everything with flag override
>
> Aleksey Shipilev has updated the pull request with a new target base due to a merge or a rebase. The pull request now contains five commits:
> 
>  - Merge branch 'master' into JDK-8328638-ocsp-post
>  - Merge branch 'master' into JDK-8328638-ocsp-post
>  - Merge branch 'master' into JDK-8328638-ocsp-post
>  - Amend CAInterop test
>  - Fix

test/jdk/security/infra/java/security/cert/CertPathValidator/certification/CAInterop.java line 478:

> 476:  * @library /test/lib
> 477:  * @build jtreg.SkippedException ValidatePathWithURL CAInterop
> 478:  * @run main/othervm -Djava.security.debug=certpath,ocsp CAInterop emsignrootcag1 OCSP

eMudhra OCSP responders don't support GET calls so these tests fail, refer - [JDK-8328830](https://bugs.openjdk.org/browse/JDK-8328830). We are following up with CA. Meanwhile, can you please add these test to ProblemList at https://github.com/openjdk/jdk/blob/master/test/jdk/ProblemList.txt#L627


# jdk_security_infra

security/infra/java/security/cert/CertPathValidator/certification/CAInterop.java#emsigneccrootcag3 8328830 generic-all 
security/infra/java/security/cert/CertPathValidator/certification/CAInterop.java#emsignrootcag1    8328830 generic-all

-------------

PR Review Comment: https://git.openjdk.org/jdk/pull/18408#discussion_r1539854497