You are viewing a plain text version of this content. The canonical link for it is here.

Posted to fx-dev@ws.apache.org by "Werner Dittmann (JIRA)" <ji...@apache.org> on 2005/08/15 15:39:58 UTC

[jira] Closed: (WSS-16) Subject Key Identifier, SKI computation not executed when SKI_OID not found

     [ http://issues.apache.org/jira/browse/WSS-16?page=all ]
     
Werner Dittmann closed WSS-16:
------------------------------

    Resolution: Fixed

Added additional check

> Subject Key Identifier, SKI computation not executed when SKI_OID not found
> ---------------------------------------------------------------------------
>
>          Key: WSS-16
>          URL: http://issues.apache.org/jira/browse/WSS-16
>      Project: WSS4J
>         Type: Bug
>  Environment: Tomcat 5 on Solaris and NT using JDK 1.4 and WSS4J 1.0 Final
>     Reporter: Paul Grillo
>     Assignee: Davanum Srinivas
>     Priority: Blocker

>
> In comonent org.apache.ws.security.components.crypto.Merlin.java in
>  method getSKIBytesFromCert(X509Certificate cert)
> A check is made for a version of the cert to be less then 3.  If so, the code appropriately calculates the SKI Identity.  However, if a cert does not contain the SKI Extension and regardless of the version of the certificate, calculation is not done and a null pointer is thrown at the bottom of the method.
> Suggested change that worked in my case is to change:
> 		if (cert.getVersion() < 3 ) {
> to
> 		if (cert.getVersion() < 3 || derEncodedValue == null) {

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira


---------------------------------------------------------------------
To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: wss4j-dev-help@ws.apache.org