-
Type:
Sub-task
-
Resolution: Delivered
-
Priority:
P4
-
Affects Version/s: 21.0.8-oracle, 24.0.1, 25
-
Component/s: security-libs
| Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
|---|---|---|---|---|---|---|
| JDK-8349739 | 24.0.1 | Marc Palmerjohnson | P4 | Resolved | Delivered | |
| JDK-8351061 | 21.0.8-oracle | Marc Palmerjohnson | P4 | Resolved | Delivered |
In JDK 21, an enhanced syntax for various timeout properties was released through JDK-8179502. This included a new system property, `com.sun.security.ocsp.readtimeout`, which allows users to control the timeout while reading OCSP responses after a successful TCP connection has been established.
This changes the default posture of this property to be the value of the `com.sun.security.ocsp.timeout` system property from its original default of 15 seconds. If the `com.sun.security.ocsp.timeout` system property is also not set, then its default 15 second timeout is propagated to the default for `com.sun.security.ocsp.readtimeout`.
For more information, see [Appendix B: CertPath Implementation in SUN Provider](https://docs.oracle.com/en/java/javase/25/security/java-pki-programmers-guide.html#GUID-EB250086-0AC1-4D60-AE2A-FC7461374746).
This changes the default posture of this property to be the value of the `com.sun.security.ocsp.timeout` system property from its original default of 15 seconds. If the `com.sun.security.ocsp.timeout` system property is also not set, then its default 15 second timeout is propagated to the default for `com.sun.security.ocsp.readtimeout`.
For more information, see [Appendix B: CertPath Implementation in SUN Provider](https://docs.oracle.com/en/java/javase/25/security/java-pki-programmers-guide.html#GUID-EB250086-0AC1-4D60-AE2A-FC7461374746).
- backported by
-
-
- Resolved
-
-
-
- Resolved
-
- relates to
-
-
- Resolved
-