RFR 8157404: Unable to read certain PKCS12 keystores from SequenceInputStream
Svetlana Nikandrova
svetlana.nikandrova at oracle.com
Fri Aug 26 17:58:01 UTC 2016
Hello,
please review this fix. It's not possible to read PKCS12 keystore with
big undefined length DER value in it from SequenceInputStream. Root
cause of the problem is that sun.security.util.DerValue relays on
InputStream.available() to get a complete 'indefinite.length' section
length and then read it, but for SequenceInputStream this method returns
number of available bytes only for current input stream, not the whole
sequence. Fixed to read all available data.
JBS:
https://bugs.openjdk.java.net/browse/JDK-8157404
Webrev:
http://cr.openjdk.java.net/~snikandrova/8157404/webrev.00/
<http://cr.openjdk.java.net/%7Esnikandrova/8157404/webrev.00/>
Thanks,
Svetlana
<http://cr.openjdk.java.net/%7Esnikandrova/8157404/webrev.00/>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.org/pipermail/security-dev/attachments/20160826/50126949/attachment.htm>
More information about the security-dev
mailing list