Subject Key Identifier, SKI computation not executed when SKI_OID not found
---------------------------------------------------------------------------
Key: WSS-16
URL: http://issues.apache.org/jira/browse/WSS-16
Project: WSS4J
Type: Bug
Environment: Tomcat 5 on Solaris and NT using JDK 1.4 and WSS4J 1.0 Final
Reporter: Paul Grillo
Assigned to: Davanum Srinivas
Priority: Blocker
In comonent org.apache.ws.security.components.crypto.Merlin.java in
method getSKIBytesFromCert(X509Certificate cert)
A check is made for a version of the cert to be less then 3. If so, the code
appropriately calculates the SKI Identity. However, if a cert does not contain
the SKI Extension and regardless of the version of the certificate, calculation
is not done and a null pointer is thrown at the bottom of the method.
Suggested change that worked in my case is to change:
if (cert.getVersion() < 3 ) {
to
if (cert.getVersion() < 3 || derEncodedValue == null) {
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
