[CXF-4897] STS: check not found certificates in DefaultSubjectProvider for symmetric key type - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 2.6.8, 2.7.5, 2.5.11
Component/s: STS
Labels:
None

Estimated Complexity:
Unknown

Description

DefaultSubjectProvider retrieves X509 certificate to encrypt key information. It asks crypto provider for X509 certs using:
X509Certificate certificate = crypto.getX509Certificates(cryptoType)[0];

If certificates are not found it caused NLP or ArrayOutOfBound exceptions in STS code.

Proposal: check returned array for null and 0 length.

Attachments

Activity

People

Assignee:: Andrei Shakirin

Reporter:: Andrei Shakirin

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 17/Mar/13 15:17

Updated:: 14/Aug/13 15:50

Resolved:: 26/Apr/13 14:59