JDK-4755970 : Basic support for CRLDistributionPoint in PKIX implementation
  • Type: Enhancement
  • Component: security-libs
  • Sub-Component: java.security
  • Affected Version: 1.2.2,1.4.2
  • Priority: P3
  • Status: Resolved
  • Resolution: Fixed
  • OS: generic
  • CPU: generic
  • Submitted: 2002-10-01
  • Updated: 2003-01-14
  • Resolved: 2003-01-14
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
Other
1.4.2 b13Fixed
Related Reports
Duplicate :  
JDK-4305583 - Need support for CRL Distribution Points extension
Relates :  
JDK-4635060 - Full support for CRL distribution points extension
Description
Currently, we do not support the CRLDistributionPoint extension. This means that CRLs must be provided via manually configured CertStores. We should see if can add basic support for the CRLDP extension soon.

This could mean:

 . support download via HTTP, etc but not LDAP
 . reasonflags must be absent
 . CRLissuer must be absent or equal to the certificate issuer

If implemented in this way, the effort should be small and no changes should be required to our CRLRevocationChecker. The code should be improved to be more complete in a future release.
Comments
CONVERTED DATA BugTraq+ Release Management Values COMMIT TO FIX: mantis-beta FIXED IN: mantis-beta INTEGRATED IN: mantis-b13 mantis-beta
14-06-2004
EVALUATION Will try to fix in Mantis. ###@###.### 2002-10-01
01-10-2002