8312126: NullPointerException in CertStore.getCRLs after 8297955

Reviewed-by: weijun
2023-09-15 13:12:15 +00:00 · 2023-09-15 13:12:15 +00:00 · 3c743cfea0
commit 3c743cfea0
parent bd268137ed
1 changed files with 5 additions and 1 deletions
--- a/src/java.naming/share/classes/sun/security/provider/certpath/ldap/LDAPCertStoreImpl.java
+++ b/src/java.naming/share/classes/sun/security/provider/certpath/ldap/LDAPCertStoreImpl.java
@ -779,9 +779,13 @@ final class LDAPCertStoreImpl {
                } catch (IllegalArgumentException e) {
                    continue;
                }
-            } else {
+            } else if (nameObject instanceof String) {
                issuerName = (String)nameObject;
+            } else {
+                throw new CertStoreException(
+                    "unrecognized issuerName: must be String or byte[]");
            }
+
            // If all we want is CA certs, try to get the (probably shorter) ARL
            Collection<X509CRL> entryCRLs = Collections.emptySet();
            if (certChecking == null || certChecking.getBasicConstraints() != -1) {