8234418: Better parsing with CertificateFactory

Reviewed-by: weijun, mschoene, rhalade
This commit is contained in:
Sean Mullan 2020-02-06 09:36:51 -05:00
parent 8a616df8b5
commit d285fd6dce

View File

@ -354,8 +354,12 @@ class DerInputBuffer extends ByteArrayInputStream implements Cloneable {
second += toDigit(buf[pos++], type); second += toDigit(buf[pos++], type);
len -= 2; len -= 2;
// handle fractional seconds (if present) // handle fractional seconds (if present)
if (buf[pos] == '.' || buf[pos] == ',') { if (generalized && (buf[pos] == '.' || buf[pos] == ',')) {
len --; len --;
if (len == 0) {
throw new IOException("Parse " + type +
" time, empty fractional part");
}
pos++; pos++;
int precision = 0; int precision = 0;
while (buf[pos] != 'Z' && while (buf[pos] != 'Z' &&
@ -365,6 +369,11 @@ class DerInputBuffer extends ByteArrayInputStream implements Cloneable {
// store millisecond precision only // store millisecond precision only
int thisDigit = toDigit(buf[pos], type); int thisDigit = toDigit(buf[pos], type);
precision++; precision++;
len--;
if (len == 0) {
throw new IOException("Parse " + type +
" time, invalid fractional part");
}
pos++; pos++;
switch (precision) { switch (precision) {
case 1: case 1:
@ -382,7 +391,6 @@ class DerInputBuffer extends ByteArrayInputStream implements Cloneable {
throw new IOException("Parse " + type + throw new IOException("Parse " + type +
" time, empty fractional part"); " time, empty fractional part");
} }
len -= precision;
} }
} else } else
second = 0; second = 0;
@ -412,6 +420,9 @@ class DerInputBuffer extends ByteArrayInputStream implements Cloneable {
switch (buf[pos++]) { switch (buf[pos++]) {
case '+': case '+':
if (len != 5) {
throw new IOException("Parse " + type + " time, invalid offset");
}
hr = 10 * toDigit(buf[pos++], type); hr = 10 * toDigit(buf[pos++], type);
hr += toDigit(buf[pos++], type); hr += toDigit(buf[pos++], type);
min = 10 * toDigit(buf[pos++], type); min = 10 * toDigit(buf[pos++], type);
@ -424,6 +435,9 @@ class DerInputBuffer extends ByteArrayInputStream implements Cloneable {
break; break;
case '-': case '-':
if (len != 5) {
throw new IOException("Parse " + type + " time, invalid offset");
}
hr = 10 * toDigit(buf[pos++], type); hr = 10 * toDigit(buf[pos++], type);
hr += toDigit(buf[pos++], type); hr += toDigit(buf[pos++], type);
min = 10 * toDigit(buf[pos++], type); min = 10 * toDigit(buf[pos++], type);
@ -436,6 +450,9 @@ class DerInputBuffer extends ByteArrayInputStream implements Cloneable {
break; break;
case 'Z': case 'Z':
if (len != 1) {
throw new IOException("Parse " + type + " time, invalid format");
}
break; break;
default: default: