On Thu, 3 Aug 2023 20:51:33 GMT, Valerie Peng <valer...@openjdk.org> wrote:
> This change addresses the scenario where a certificate is first stored as > part of a certificate chain and then stored again as a certificate > corresponding to a PrivateKey entry. Newer version of NSS errors out with > CKR_GENERAL_ERROR with the 2nd store, i.e. C_CreateObject() call. > > Proposed fix is to check for match before calling C_CreateObject(), if a > match is found, set its alias instead. > > > > > > > > > Hmm, does the test fail with the changes in this PR or without? Are you > > also using NSS and which version? > > It fails with and w/o this patch, looks like related to the > https://bugs.openjdk.org/browse/JDK-8232153 > > > > > > > > > Hmm, does the test fail with the changes in this PR or without? Are you > > also using NSS and which version? > > It fails with and w/o this patch, looks like related to the > https://bugs.openjdk.org/browse/JDK-8232153 Yes, looks very likely to be related to that. I will check w/ Rajan also. ------------- PR Comment: https://git.openjdk.org/jdk/pull/15146#issuecomment-1679367989
