`Certificate#crl_uris` throws exception "undefined method `value' for nil (NoMethodError)"

[gettalong]

I have a certificate that errors out when calling cert.crl_uris with a NoMethodError for a nil value.

Going through the code the certificate has two values in cdp_asn1. The first one has the expected tag value of 6 for the URI. The second one, however, has a tag value of 4, leading to a nil value in crl_uris. Looking at the code there might be other situations where a nil value might be included in crl_uris.

Having the nil value in crl_uris leads to an error when calling crl_uris&.map(&:value). This can be avoided by using #compact, i.e. crl_uris&.compact&.map(&:value).

[rhenium]

Could you provide a certificate that causes the exception?

[gettalong]

Could you provide a certificate that causes the exception?

I will ask if I'm allowed to share the certificate.

[gettalong]

@rhenium Here you go: Certificate.zip

[rhenium]

Thanks, it is helpful:

            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.netrust.net/netrustca2-1.crl
                Full Name:
                  DirName:C = SG, O = Netrust Pte Ltd, OU = Netrust Certificate Authority, CN = Netrust CA 2-1, CN = CRL421

The extension contains two DistributionPoint, and the second one contains no URI.

#776 should fix it.