Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8175347

[test] Some cases failed due to Timestamp Authority was using SHA-1 when doing timestamp

    Details

    • Type: Bug
    • Status: Closed
    • Priority: P4
    • Resolution: Duplicate
    • Affects Version/s: 9
    • Fix Version/s: None
    • Component/s: deploy
    • Labels:

      Description

      See log:
      security: PKIX path validation failed: java.security.cert.CertPathValidatorException: denyAfter constraint check failed: SHA1 used with Constraint date: Sat, Dec 31 16:00:00 PST 2016; PKIXParameter date: Tue, Feb 21 01:25:08 PST 2017 used with certificate: CN=Starfield Timestamp Authority, OU=http://certs.starfieldtech.com/repository/, O="Starfield Technologies, LLC", L=Scottsdale, ST=Arizona, C=US.
      security: The certificate has expired, but TSA is not valid

      We need to either re-do timestamp or remove SHA1 jdkCA & denyAfter 2017-01-01 from java_home\conf\security\java.securitjdk.certpath.disabledAlgorithms

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              wenjyang Crystal Yang
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: