Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
openanolis
dragonwell11
提交
5cea3707
D
dragonwell11
项目概览
openanolis
/
dragonwell11
通知
7
Star
2
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
D
dragonwell11
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
提交
Issue看板
体验新版 GitCode,发现更多精彩内容 >>
提交
5cea3707
编写于
3月 04, 2010
作者:
W
weijun
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
6880321: sun.security.provider.JavaKeyStore abuse of OOM Exception handling
Reviewed-by: xuelei
上级
2064bbe0
变更
1
显示空白变更内容
内联
并排
Showing
1 changed file
with
30 addition
and
46 deletion
+30
-46
jdk/src/share/classes/sun/security/provider/JavaKeyStore.java
...src/share/classes/sun/security/provider/JavaKeyStore.java
+30
-46
未找到文件。
jdk/src/share/classes/sun/security/provider/JavaKeyStore.java
浏览文件 @
5cea3707
...
@@ -29,9 +29,9 @@ import java.io.*;
...
@@ -29,9 +29,9 @@ import java.io.*;
import
java.security.*
;
import
java.security.*
;
import
java.security.cert.Certificate
;
import
java.security.cert.Certificate
;
import
java.security.cert.CertificateFactory
;
import
java.security.cert.CertificateFactory
;
import
java.security.cert.X509Certificate
;
import
java.security.cert.CertificateException
;
import
java.security.cert.CertificateException
;
import
java.util.*
;
import
java.util.*
;
import
sun.misc.IOUtils
;
import
sun.security.pkcs.EncryptedPrivateKeyInfo
;
import
sun.security.pkcs.EncryptedPrivateKeyInfo
;
...
@@ -677,23 +677,14 @@ abstract class JavaKeyStore extends KeyStoreSpi {
...
@@ -677,23 +677,14 @@ abstract class JavaKeyStore extends KeyStoreSpi {
entry
.
date
=
new
Date
(
dis
.
readLong
());
entry
.
date
=
new
Date
(
dis
.
readLong
());
// Read the private key
// Read the private key
try
{
entry
.
protectedPrivKey
=
entry
.
protectedPrivKey
=
new
byte
[
dis
.
readInt
()];
IOUtils
.
readFully
(
dis
,
dis
.
readInt
(),
true
);
}
catch
(
OutOfMemoryError
e
)
{
throw
new
IOException
(
"Keysize too big"
);
}
dis
.
readFully
(
entry
.
protectedPrivKey
);
// Read the certificate chain
// Read the certificate chain
int
numOfCerts
=
dis
.
readInt
();
int
numOfCerts
=
dis
.
readInt
();
try
{
if
(
numOfCerts
>
0
)
{
if
(
numOfCerts
>
0
)
{
entry
.
chain
=
new
Certificate
[
numOfCerts
];
List
<
Certificate
>
certs
=
new
ArrayList
<>(
}
numOfCerts
>
10
?
10
:
numOfCerts
);
}
catch
(
OutOfMemoryError
e
)
{
throw
new
IOException
(
"Too many certificates in chain"
);
}
for
(
int
j
=
0
;
j
<
numOfCerts
;
j
++)
{
for
(
int
j
=
0
;
j
<
numOfCerts
;
j
++)
{
if
(
xVersion
==
2
)
{
if
(
xVersion
==
2
)
{
// read the certificate type, and instantiate a
// read the certificate type, and instantiate a
...
@@ -712,16 +703,14 @@ abstract class JavaKeyStore extends KeyStoreSpi {
...
@@ -712,16 +703,14 @@ abstract class JavaKeyStore extends KeyStoreSpi {
}
}
}
}
// instantiate the certificate
// instantiate the certificate
try
{
encoded
=
IOUtils
.
readFully
(
dis
,
dis
.
readInt
(),
true
);
encoded
=
new
byte
[
dis
.
readInt
()];
}
catch
(
OutOfMemoryError
e
)
{
throw
new
IOException
(
"Certificate too big"
);
}
dis
.
readFully
(
encoded
);
bais
=
new
ByteArrayInputStream
(
encoded
);
bais
=
new
ByteArrayInputStream
(
encoded
);
entry
.
chain
[
j
]
=
cf
.
generateCertificate
(
bais
);
certs
.
add
(
cf
.
generateCertificate
(
bais
)
);
bais
.
close
();
bais
.
close
();
}
}
// We can be sure now that numOfCerts of certs are read
entry
.
chain
=
certs
.
toArray
(
new
Certificate
[
numOfCerts
]);
}
// Add the entry to the list
// Add the entry to the list
entries
.
put
(
alias
,
entry
);
entries
.
put
(
alias
,
entry
);
...
@@ -753,12 +742,7 @@ abstract class JavaKeyStore extends KeyStoreSpi {
...
@@ -753,12 +742,7 @@ abstract class JavaKeyStore extends KeyStoreSpi {
cfs
.
put
(
certType
,
cf
);
cfs
.
put
(
certType
,
cf
);
}
}
}
}
try
{
encoded
=
IOUtils
.
readFully
(
dis
,
dis
.
readInt
(),
true
);
encoded
=
new
byte
[
dis
.
readInt
()];
}
catch
(
OutOfMemoryError
e
)
{
throw
new
IOException
(
"Certificate too big"
);
}
dis
.
readFully
(
encoded
);
bais
=
new
ByteArrayInputStream
(
encoded
);
bais
=
new
ByteArrayInputStream
(
encoded
);
entry
.
cert
=
cf
.
generateCertificate
(
bais
);
entry
.
cert
=
cf
.
generateCertificate
(
bais
);
bais
.
close
();
bais
.
close
();
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录