https://issues.apache.org/bugzilla/show_bug.cgi?id=49447
Summary: KeyStoreResolver iterator returns null for symmetric
keys
Product: Security
Version: unspecified
Platform: PC
OS/Version: Windows NT
Status: NEW
Severity: normal
Priority: P2
Component: Encryption
AssignedTo: security-dev@xml.apache.org
ReportedBy: clement_pelle...@ibi.com
Created an attachment (id=25599)
--> (https://issues.apache.org/bugzilla/attachment.cgi?id=25599)
patch to solve problem including new junit test
When iterating the certificates in a KeyStoreResolver, the iterator might
return null even though hasNext() says there are more elements. This happens
because hasNext() only checks if there are more aliases. If the next alias
contains a symmetric key, there is no certificate in the KeyStore entry and
next() returns null. When you look at the KeyResolvers, they are not prepared
to handle a null value, this will cause a NullPointerException.
To reproduce, use the junit KeyStoreResolverTest in the attachment.
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
