[JDK-7182500] OCSP revocation checking fails if OCSP response does not contain certificates - Java Bug System

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: P2
Resolution: Fixed
Affects Version/s: 7u6
Fix Version/s: 7u6
Component/s: security-libs
Labels:

Subcomponent:
java.security
Introduced In Version:

7u6
Resolved In Build:
b22
CPU:

generic
OS:

generic
Verification:
Verified

Description

CertPathValidatorException is thrown if there are not certificates in OCSP responce:

java.security.cert.CertPathValidatorException: Responder's certificate is not trusted for signing OCSP responses
at sun.security.provider.certpath.PKIXMasterCertPathValidator.validate(PKIXMasterCertPathValidator.java:159)
at sun.security.provider.certpath.PKIXCertPathValidator.doValidate(PKIXCertPathValidator.java:351)
at sun.security.provider.certpath.PKIXCertPathValidator.engineValidate(PKIXCertPathValidator.java:191)
at java.security.cert.CertPathValidator.validate(CertPathValidator.java:279)
at TestOCSP.run(TestOCSP.java:211)
at TestOCSP.main(TestOCSP.java:52)

Attachments

Activity

People

Assignee:: Vincent Ryan

Reporter:: Artem Smotrakov

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 2012-07-09 04:28

Updated:: 2014-11-05 05:42

Resolved:: 2012-08-03 06:33

Imported:: 17/Sep/12 10:31 PM

Indexed:: 04/Aug/12 3:00 AM