[jira] [Commented] (CXF-4897) STS: check not found certificates in DefaultSubjectProvider for symmetric key type

Colm O hEigeartaigh (JIRA) Tue, 19 Mar 2013 03:23:21 -0700

    [ 
https://issues.apache.org/jira/browse/CXF-4897?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13606205#comment-13606205
 ]


Colm O hEigeartaigh commented on CXF-4897:
------------------------------------------

Hi Andrei,

Please backmerge this fix as well to 2.7.x, 2.6.x + 2.5.x.

Colm.
                
> STS: check not found certificates in DefaultSubjectProvider for symmetric key 
> type
> ----------------------------------------------------------------------------------
>
>                 Key: CXF-4897
>                 URL: https://issues.apache.org/jira/browse/CXF-4897
>             Project: CXF
>          Issue Type: Bug
>          Components: STS
>            Reporter: Andrei Shakirin
>            Assignee: Andrei Shakirin
>
> DefaultSubjectProvider retrieves X509 certificate to encrypt key information. 
> It asks crypto provider for X509 certs using:
> X509Certificate certificate = crypto.getX509Certificates(cryptoType)[0];
> If certificates are not found it caused NLP or ArrayOutOfBound exceptions in 
> STS code.
> Proposal: check returned array for null and 0 length.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Commented] (CXF-4897) STS: check not found certificates in DefaultSubjectProvider for symmetric key type

Reply via email to