|
Hi! I think I found a bug on org.apache.ws.security.components.crypto.AbstractCrypto On method private String getAliasForX509Cert(String issuer,
BigInteger serialNumber, boolean useSerialNumber) where it reads // no cert chain, so lets check if getCertificate
gives us a result. cert = keystore.getCertificate(alias); if (cert == null) { return null; } It should be // no cert chain, so lets check if getCertificate
gives us a result. cert = keystore.getCertificate(alias); if (cert == null) { continue; } so that he continues to check the other aliases in
the keystore. Can anyone on development team confirm this is a
really a bug? Best regards, Diogo Henriques |
