Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Critical
Fix Version/s: 7.1.0.ER3
Affects Version/s: 7.1.0.ER1
Component/s: Security
Labels:
None

CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Target Release:

7.1.0.GA
Git Pull Request:
https://github.com/wildfly-security/wildfly-elytron/pull/907

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Coverity found possible NPE occurence, as according to javadoc for SSLSession().getLocalCertificates() may return null [1], but X500.asX509CertificateArray can't consume null parameter and NPE will be thrown in that case.

ServerAuthenticationContext.java

 
                } else if (callback instanceof SSLCallback) {
                    SSLCallback sslCallback = (SSLCallback) callback;

                    try {
                        peerCerts = X500.asX509CertificateArray(sslCallback.getSslSession().getPeerCertificates());
                    } catch (SSLPeerUnverifiedException e) {
                        log.trace("Peer unverified", e);
                        peerCerts = null;
                    }
                    serverCerts = X500.asX509CertificateArray(sslCallback.getSslSession().getLocalCertificates());
                    handleOne(callbacks, idx + 1);
                }

https://scan7.coverity.com/reports.htm#v23632/p11778/fileInstanceId=26379676&defectInstanceId=5932898&mergedDefectId=1449008

[1] https://docs.oracle.com/javase/8/docs/api/javax/net/ssl/SSLSession.html#getLocalCertificates--

is cloned by

ELY-1278 Coverity static analysis: Dereference null return value in ServerAuthenticationContext (Elytron)

Resolved

is incorporated by

JBEAP-12265 Upgrade WildFly Elytron to 1.1.0.CR3

Closed

is related to

JBEAP-11396 Elytron - *-PLUS SASL mechanisms don't work - part of channel binding integration seems to be missing

Closed

Assignee:: Ilia Vassilev

Reporter:: Martin Choma

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2017/07/03 7:07 AM

Updated:: 2024/09/02 3:49 PM

Resolved:: 2017/07/24 4:14 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates