diff options
author | Andreas Geissler <andreas-geissler@telekom.de> | 2022-09-12 13:27:04 +0200 |
---|---|---|
committer | Andreas Geissler <andreas-geissler@telekom.de> | 2022-09-20 10:08:05 +0200 |
commit | 0587da741a0edad6e5eefedbc1d200f0e2c81f2b (patch) | |
tree | 2db6f1849ce6c01e2ee945ae8a50e3459bae054e /certService/src/main/java/org/onap/oom/certservice/cmpv2client/validation/CmpResponseValidationHelper.java | |
parent | 187d1435142c50e627890ddd5049a9f43ebbe1a2 (diff) |
[OOM-CERT-SERVICE] Fix vulnerabilities for Kohn
- update gson to 2.9.0
- update commons-io to 2.11.0
- update httpclient to 4.5.13
- update bcprov-jdk15on to 1.70
- left version of sonar-go-pluging at 1.1.1.2000
- fix the implementation in respect to the update
- include py3.8 fix (https://gerrit.onap.org/r/c/oom/platform/cert-service/+/130574)
Issue-ID: OOM-2985
Signed-off-by: Andreas Geissler <andreas-geissler@telekom.de>
Change-Id: I0d6b775c3f09b283900981c49db4abaf80d33b11
Diffstat (limited to 'certService/src/main/java/org/onap/oom/certservice/cmpv2client/validation/CmpResponseValidationHelper.java')
-rw-r--r-- | certService/src/main/java/org/onap/oom/certservice/cmpv2client/validation/CmpResponseValidationHelper.java | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/certService/src/main/java/org/onap/oom/certservice/cmpv2client/validation/CmpResponseValidationHelper.java b/certService/src/main/java/org/onap/oom/certservice/cmpv2client/validation/CmpResponseValidationHelper.java index 90044b66..f3da0f32 100644 --- a/certService/src/main/java/org/onap/oom/certservice/cmpv2client/validation/CmpResponseValidationHelper.java +++ b/certService/src/main/java/org/onap/oom/certservice/cmpv2client/validation/CmpResponseValidationHelper.java @@ -36,6 +36,7 @@ import javax.crypto.spec.SecretKeySpec; import org.bouncycastle.asn1.ASN1ObjectIdentifier; import org.bouncycastle.asn1.DERBitString; +import org.bouncycastle.asn1.ASN1BitString; import org.bouncycastle.asn1.cmp.CMPObjectIdentifiers; import org.bouncycastle.asn1.cmp.InfoTypeAndValue; import org.bouncycastle.asn1.cmp.PBMParameter; @@ -66,7 +67,7 @@ public final class CmpResponseValidationHelper { static void verifySignature(PKIMessage respPkiMessage, PublicKey pk) throws CmpClientException { final byte[] protBytes = getProtectedBytes(respPkiMessage); - final DERBitString derBitString = respPkiMessage.getProtection(); + final DERBitString derBitString = (DERBitString) respPkiMessage.getProtection(); try { final Signature signature = Signature.getInstance( |