Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8264554

X509KeyManagerImpl calls getProtectionParameter with incorrect alias

    XMLWordPrintable

    Details

    • Subcomponent:
    • Resolved In Build:
      b17
    • Verification:
      Verified

      Description

      ADDITIONAL SYSTEM INFORMATION :
      Presumably has been there since time immemorial but I didn't try to narrow it down.

      A DESCRIPTION OF THE PROBLEM :
      During code review I noted that the wrong alias is used in this call to getProtectionParameter:

      https://github.com/openjdk/jdk/blob/ee5e00b05f5ae8410bc31e15381d068d09c53422/src/java.base/share/classes/sun/security/ssl/X509KeyManagerImpl.java#L272-L273

      'alias' is a composite of three dot-separated parts, of which 'keyStoreAlias' is the third, and would be the correct argument for this call (as it is also the argument to getEntry in these lines).

      It seems the implementations of getProtectionParameter included in the JDK do not make use of the alias (apart from a null check), so there is no effect in typical usages. However KeyStore.Builder is an open API so the bug potentially affects other implementations.


      FREQUENCY : always


        Attachments

          Issue Links

            Activity

              People

              Assignee:
              xuelei Xue-Lei Fan
              Reporter:
              webbuggrp Webbug Group
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: