Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-7100

Revocation CA lookup for nonConflictingCertificateData does not use normalized DN format

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: EJBCA 6.13.0.2, EJBCA 6.14.0
    • Component/s: None
    • Labels:
      None
    • Stakeholder:
      Customer
    • Issue discovered during:
      Customer
    • Sprint:
      EJBCA Sprint 15, EJBCA Sprint 16

      Description

      See linked issue.

       

      The problem lies in NonConflictingCertificateStore.getCertificateDataByIssuerAndSerno:

      The code:

       

      final int caid = issuerdn.hashCode();
      final CAInfo cainfo = caSession.getCAInfoInternal(caid);
      
      

      Will create the wrong caid. It should be:

      final int caid = CertTools.stringToBCDNString(StringTools.strip(caSubjectDN)).hashCode();
      final CAInfo cainfo = caSession.getCAInfoInternal(caid);

       Should be added to existing systemtests, both proper and reverse DN.

        Attachments

          Activity

            People

            • Assignee:
              mikek Mike Agrenius Kushner
              Reporter:
              tomas Tomas Gustavsson
              Verified by:
              Jekaterina Bunina
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 1 hour
                1h
                Remaining:
                Remaining Estimate - 1 hour
                1h
                Logged:
                Time Spent - Not Specified
                Not Specified