[SERVER-61445] OCSP fetcher treats responses without nextUpdate as expired Created: 12/Nov/21  Updated: 29/Oct/23  Resolved: 25/Nov/21

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: 5.2.0

Type: Bug Priority: Major - P3
Reporter: Erwin Pe Assignee: Erwin Pe
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Related
related to SERVER-49537 OCSP Validation with empty nextUpdate... Closed
Backwards Compatibility: Fully Compatible
Operating System: ALL
Sprint: Security 2021-11-29
Participants:

 Description   

If the OCSP fetcher gets an OCSP response without a nextUpdate field, it treats it as an expired response and returns an error here. This error is considered transient, and the fetcher will try again after some duration determined by the retry backoff counter.



 Comments   
Comment by Githook User [ 25/Nov/21 ]

Author:

{'name': 'Erwin Pe', 'email': 'erwin.pe@mongodb.com', 'username': 'erwee'}

Message: SERVER-61445 OCSP fetcher treats responses without nextUpdate as expired
Branch: master
https://github.com/mongodb/mongo/commit/950116646650c31c3753561886dec4b823ca6b1a

Generated at Thu Feb 08 05:52:26 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.