Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-7182500

OCSP revocation checking fails if OCSP response does not contain certificates

    Details

    • Subcomponent:
    • Introduced In Version:
      7u6
    • Resolved In Build:
      b22
    • CPU:
      generic
    • OS:
      generic
    • Verification:
      Verified

      Description

      CertPathValidatorException is thrown if there are not certificates in OCSP responce:

      java.security.cert.CertPathValidatorException: Responder's certificate is not trusted for signing OCSP responses
      at sun.security.provider.certpath.PKIXMasterCertPathValidator.validate(PKIXMasterCertPathValidator.java:159)
      at sun.security.provider.certpath.PKIXCertPathValidator.doValidate(PKIXCertPathValidator.java:351)
      at sun.security.provider.certpath.PKIXCertPathValidator.engineValidate(PKIXCertPathValidator.java:191)
      at java.security.cert.CertPathValidator.validate(CertPathValidator.java:279)
      at TestOCSP.run(TestOCSP.java:211)
      at TestOCSP.main(TestOCSP.java:52)

        Attachments

          Activity

            People

            • Assignee:
              vinnie Vincent Ryan
              Reporter:
              asmotrak Artem Smotrakov
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:
                Imported:
                Indexed: