[GERONIMO-2443] Import CA reply should match the public key in the keystore with that in the certificate from CA. - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.1.1, 1.2
Fix Version/s: 1.1.2, 1.2
Component/s: security
Security Level: public (Regular issues)
Labels:
None
Environment:

G1.1.1

Patch Info:

Patch Available

Description

While importing CA reply into the keystore, the public key in the certificate issued by the CA should be matched with the public key that is currently in the keystore. java.securtiy.KeyStore.setKeyEntry does not complain if the privateKey and the publicKey in the certificate are not related An accidental import of a certificate corresponding to one public key along with an unrelated private key renders the key pair useless and results in errors while using the certificate.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

GERONIMO-2443-v1.2.patch
28/Sep/06 16:29
1 kB
Vamsavardhana Reddy

Activity

People

Assignee:: Unassigned

Reporter:: Vamsavardhana Reddy

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 28/Sep/06 15:52

Updated:: 02/Nov/06 18:50

Resolved:: 02/Nov/06 18:50