Details
-
Bug
-
Status: Open
-
P4
-
Resolution: Unresolved
-
17.0.3
-
None
-
x86_64
-
os_x
Description
ADDITIONAL SYSTEM INFORMATION :
OS : OSX 13.2
Java : 17.0.6
Java Argument : -Djavax.net.debug=all -Djavax.net.ssl.trustStoreType=KeychainStore
Java Spring Boot Application running as daemon process (root context)
Also our Application wants to use System certificate store
A DESCRIPTION OF THE PROBLEM :
1. Installed Self signed certificate installed in System certificate store
With Java 17.0.6 we got Error :
sun.security.validator.ValidatorException: PKIX path building failed:
sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to
requested target
With Java : 17.0.2 no error.
Also found this changes introduced form jdk-17.0.3 onwards
PR: https://github.com/openjdk/jdk17u/commit/f11bb8984e92400b0d42935c251e95c65e04dedb
This has been mentioned in the release note https://docs.azul.com/prime/CVE-Fixes-April22
Note : This is a breakage form 17.0.3 onwards, Working fine with 17.0.2
REGRESSION : Last worked in version 17
STEPS TO FOLLOW TO REPRODUCE THE PROBLEM :
Simple Spring boot application, Run with JVM parameter -Djavax.net.debug=all -Djavax.net.ssl.trustStoreType=KeychainStore
Java doesn't recognise system certificate
EXPECTED VERSUS ACTUAL BEHAVIOR :
EXPECTED -
It should recognise system certificate
ACTUAL -
It doesn't recognise system certificate
FREQUENCY : always
OS : OSX 13.2
Java : 17.0.6
Java Argument : -Djavax.net.debug=all -Djavax.net.ssl.trustStoreType=KeychainStore
Java Spring Boot Application running as daemon process (root context)
Also our Application wants to use System certificate store
A DESCRIPTION OF THE PROBLEM :
1. Installed Self signed certificate installed in System certificate store
With Java 17.0.6 we got Error :
sun.security.validator.ValidatorException: PKIX path building failed:
sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to
requested target
With Java : 17.0.2 no error.
Also found this changes introduced form jdk-17.0.3 onwards
PR: https://github.com/openjdk/jdk17u/commit/f11bb8984e92400b0d42935c251e95c65e04dedb
This has been mentioned in the release note https://docs.azul.com/prime/CVE-Fixes-April22
Note : This is a breakage form 17.0.3 onwards, Working fine with 17.0.2
REGRESSION : Last worked in version 17
STEPS TO FOLLOW TO REPRODUCE THE PROBLEM :
Simple Spring boot application, Run with JVM parameter -Djavax.net.debug=all -Djavax.net.ssl.trustStoreType=KeychainStore
Java doesn't recognise system certificate
EXPECTED VERSUS ACTUAL BEHAVIOR :
EXPECTED -
It should recognise system certificate
ACTUAL -
It doesn't recognise system certificate
FREQUENCY : always