SANCertificateIdentityMapping - Unable to parse a byte array (of length 42) as a subjectAltName 'otherName'. It is ignored.

Description

 

Environment

None

Activity

Show:
Daryl Herzmann
February 18, 2018, 7:34 PM

How is the java exception and fix made by PR 1023 fixing "Can't remove Group Chat (service) Administrators" ?

Venushka Perera
February 17, 2018, 11:05 PM

I've proposed a fix for this here: https://github.com/igniterealtime/Openfire/pull/1023

Venushka Perera
February 17, 2018, 10:31 PM
Edited

I'm seeing the same exception trace on start up when using a SSL certificate signed by our company root certificate and same happens with a self-signed certificate generated with OpenSSL.

Based on the code currently in SANCertificateIdentityMapping, it assumes that xmppAddr value is always an ASN1String where as in this case its an DERTaggedObject (a subclass of ASN1TaggedObject) which contains an {{ASN1String}} within.

I think it should consider that the ASN1Primitive passed in to this method being an ASN1TaggedObject.

Fixed

Assignee

Guus der Kinderen

Reporter

wroot

Labels