Skip to main content
summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJesse McConnell2012-03-08 19:56:00 +0000
committerJesse McConnell2012-03-08 19:56:00 +0000
commit6c81941142b9efe2b5b80198268ae75687dc6374 (patch)
tree4ada91deda609bab1e62e2f950457dff0d14d69b
parent8db57b56ba47b65de5363efaa9eafea068a12f37 (diff)
downloadorg.eclipse.jetty.project-6c81941142b9efe2b5b80198268ae75687dc6374.tar.gz
org.eclipse.jetty.project-6c81941142b9efe2b5b80198268ae75687dc6374.tar.xz
org.eclipse.jetty.project-6c81941142b9efe2b5b80198268ae75687dc6374.zip
[Bug 373567] cert validation issue with ocsp and crldp always being enabled when validating turned on fixed
Diffstat
-rw-r--r--jetty-util/src/main/java/org/eclipse/jetty/util/security/CertificateValidator.java11
1 files changed, 8 insertions, 3 deletions
diff --git a/jetty-util/src/main/java/org/eclipse/jetty/util/security/CertificateValidator.java b/jetty-util/src/main/java/org/eclipse/jetty/util/security/CertificateValidator.java
index fb2d284388..8e5024ac98 100644
--- a/jetty-util/src/main/java/org/eclipse/jetty/util/security/CertificateValidator.java
+++ b/jetty-util/src/main/java/org/eclipse/jetty/util/security/CertificateValidator.java
@@ -232,10 +232,15 @@ public class CertificateValidator
}
// Enable On-Line Certificate Status Protocol (OCSP) support
- Security.setProperty("ocsp.enable","true");
-
+ if (_enableOCSP)
+ {
+ Security.setProperty("ocsp.enable","true");
+ }
// Enable Certificate Revocation List Distribution Points (CRLDP) support
- System.setProperty("com.sun.security.enableCRLDP","true");
+ if (_enableCRLDP)
+ {
+ System.setProperty("com.sun.security.enableCRLDP","true");
+ }
// Build certification path
CertPathBuilderResult buildResult = CertPathBuilder.getInstance("PKIX").build(pbParams);

Back to the top