8238157: security/infra/java/security/cert/CertPathValidator/certification/AmazonCA.java tests failures because of revocation date
Baesken, Matthias
matthias.baesken at sap.com
Thu Jan 30 08:34:51 UTC 2020
Hello Sean, it is intermittent (we see it ~ 1-2 times per week in our tests ).
> Also do you see it with CRLs or OCSP?
I think it is OCSP, at least the log says OCSP a lot of times �� !
> Perhaps the revocation date in
> the CRL and OCSP response is off by one second
Yeah, looks like this !
Best regards, Matthias
>
> On 1/29/20 7:18 AM, Baesken, Matthias wrote:
> >
> > Hello, recently we see (cross platform) sometimes failures in the
> > jtreg test
> >
> security/infra/java/security/cert/CertPathValidator/certification/AmazonCA.
> java
> > .
> >
>
> Is it intermittent or consistent? Also do you see it with CRLs or OCSP?
>
> It could be an issue with Amazon's CA. Perhaps the revocation date in
> the CRL and OCSP response is off by one second. It would be useful if
> you could debug a bit more into this.
>
> Thanks,
>
> Sean
>
More information about the security-dev
mailing list