[7u] code review request: 8014805: NPE is thrown during certpath validation if certificate does not have AuthorityKeyIdentifier extension

Vincent Ryan vincent.x.ryan at oracle.com
Mon Jun 24 07:38:03 PDT 2013


Hello all,

The fix to handle Authority Key IDs also applies to Subject Key IDs so I've duplicated the changes:
  http://cr.openjdk.java.net/~vinnie/8014805/webrev.01

Thanks.


On 24 Jun 2013, at 12:42, Vincent Ryan wrote:

> Thanks.
> 
> On 22 Jun 2013, at 01:19, Xuelei Fan wrote:
> 
>> Looks fine to me.
>> 
>> Xuelei
>> 
>> On 6/21/2013 11:46 PM, Vincent Ryan wrote:
>>> Please review this fix for 7u:
>>> 
>>> http://cr.openjdk.java.net/~vinnie/8014805/webrev.00/
>>> http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8014805
>>> 
>>> It corrects the NPE that occurs when verifying an X.509 cert that has an Authority Key ID extension
>>> present but it is not in the hash-based format.
>>> 
>>> This problem does not occur in JDK 8.
>>> 
>>> Thanks.
>>> 
>> 
> 



More information about the security-dev mailing list