bc-java icon indicating copy to clipboard operation
bc-java copied to clipboard
verified publisher icon bcgit

CRL Issuer field with an empty DN

Open onepeople158 opened this issue 10 months ago • 0 comments

Main content:
I have a CRL file where the DN value in the Issuer field is empty, but RFC 5280 specifies that the size of the DN should be (1..MAX). I was able to successfully print the Issuer field of this CRL file using Bouncy Castle 1.79 without any errors. For comparison, when using GnuTLS to print this CRL file, the following error was displayed: error: get_issuer_dn: ASN1 parser: Value is not valid. Therefore, I believe this might be a bug.

Version of Bouncy Castle used:

(bcprov-jdk18on-1.79.jar:bcpkix-jdk18on-1.79.jar)

Computer system: Ubuntu

How reproducible:

javac -cp ".:bcprov-jdk18on-1.79.jar:bcpkix-jdk18on-1.79.jar" CRLParserExample_kong_issuer.java
java -cp ".:bcprov-jdk18on-1.79.jar:bcpkix-jdk18on-1.79.jar" CRLParserExample_kong_issuer

Test case:

CRLParserExample_kong_issuer.zip

onepeople158 avatar Mar 04 '25 01:03 onepeople158