Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8302543

Java doesn't recognise system certificate

    XMLWordPrintable

Details

    Description

      ADDITIONAL SYSTEM INFORMATION :
      OS : OSX 13.2
      Java : 17.0.6
      Java Argument : -Djavax.net.debug=all -Djavax.net.ssl.trustStoreType=KeychainStore
      Java Spring Boot Application running as daemon process (root context)
      Also our Application wants to use System certificate store


      A DESCRIPTION OF THE PROBLEM :
      1. Installed Self signed certificate installed in System certificate store

      With Java 17.0.6 we got Error :

      sun.security.validator.ValidatorException: PKIX path building failed:
      sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to
      requested target

      With Java : 17.0.2 no error.

      Also found this changes introduced form jdk-17.0.3 onwards
      PR: https://github.com/openjdk/jdk17u/commit/f11bb8984e92400b0d42935c251e95c65e04dedb

      This has been mentioned in the release note https://docs.azul.com/prime/CVE-Fixes-April22

      Note : This is a breakage form 17.0.3 onwards, Working fine with 17.0.2

      REGRESSION : Last worked in version 17

      STEPS TO FOLLOW TO REPRODUCE THE PROBLEM :
      Simple Spring boot application, Run with JVM parameter -Djavax.net.debug=all -Djavax.net.ssl.trustStoreType=KeychainStore

      Java doesn't recognise system certificate

      EXPECTED VERSUS ACTUAL BEHAVIOR :
      EXPECTED -
      It should recognise system certificate
      ACTUAL -
      It doesn't recognise system certificate

      FREQUENCY : always


      Attachments

        Activity

          People

            pnarayanaswa Praveen Narayanaswamy
            webbuggrp Webbug Group
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

              Created:
              Updated: