[JBoss JIRA] (AS7-4876) mod_cluster uses the same password for accessing sslKeyStore and sslTrustStore
10:54 a.m.
Radoslav Husar created AS7-4876:
-----------------------------------
Summary: mod_cluster uses the same password for accessing sslKeyStore and
sslTrustStore
Key: AS7-4876
URL: https://issues.jboss.org/browse/AS7-4876
Project: Application Server 7
Issue Type: Bug
Components: Clustering
Affects Versions: 7.1.2.Final (EAP)
Reporter: Radoslav Husar
Assignee: Jean-Frederic Clere
Fix For: 7.1.3.Final (EAP)
Problem reported by Duncan Doyle.
The passwords shouldn't be forced to be the same, in AS5 they could have been
different.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
11:04 a.m.
[
https://issues.jboss.org/browse/AS7-4876?page=com.atlassian.jira.plugin.s...
]
Michal Babacek commented on AS7-4876:
-------------------------------------
h4. Explanation
*certificate-key-file* represents former property *sslKeyStore* and
*ca-certificate-file* represents former property *sslTrustStore*.
In AS5 we had these password properties:
{code}
+++
<property name="sslTrustStorePassword">tomcat</property>
<property name="sslKeyStorePass">tomcat</property>
+++
{code}
whereas in AS7 modcluster subsystem, there is only:
{code}
+++
String PASSWORD = "password";
+++
{code}
property in
[CommonAttributes.java|https://github.com/jbossas/jboss-as/blob/master/mod...]
and the most importantly:
{code}
+++
[139] if (password.isDefined()) {
[140] config.setSslTrustStorePassword(password.asString());
[141] config.setSslKeyStorePassword(password.asString());
[142] }
+++
{code}
in
[ModClusterSubsystemAdd.java|https://github.com/jbossas/jboss-as/blob/mast...],
the aforementioned code uses the same "password" property's value both
for accessing *sslKeyStore* and *sslTrustStore*.
mod_cluster uses the same password for accessing sslKeyStore and
sslTrustStore
------------------------------------------------------------------------------
Key: AS7-4876
URL: https://issues.jboss.org/browse/AS7-4876
Project: Application Server 7
Issue Type: Bug
Components: Clustering
Affects Versions: 7.1.2.Final (EAP)
Reporter: Radoslav Husar
Assignee: Jean-Frederic Clere
Fix For: 7.1.3.Final (EAP)
Problem reported by Duncan Doyle.
The passwords shouldn't be forced to be the same, in AS5 they could have been
different.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
8:21 p.m.
[
https://issues.jboss.org/browse/AS7-4876?page=com.atlassian.jira.plugin.s...
]
Brian Stansberry updated AS7-4876:
----------------------------------
Fix Version/s: 7.2.0.CR1
(was: 7.1.3.Final (EAP))
mod_cluster uses the same password for accessing sslKeyStore and
sslTrustStore
------------------------------------------------------------------------------
Key: AS7-4876
URL: https://issues.jboss.org/browse/AS7-4876
Project: Application Server 7
Issue Type: Bug
Components: Clustering
Affects Versions: 7.1.2.Final (EAP)
Reporter: Radoslav Husar
Assignee: Jean-Frederic Clere
Fix For: 7.2.0.CR1
Problem reported by Duncan Doyle.
The passwords shouldn't be forced to be the same, in AS5 they could have been
different.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
10:30 a.m.
[
https://issues.jboss.org/browse/AS7-4876?page=com.atlassian.jira.plugin.s...
]
Jean-Frederic Clere reassigned AS7-4876:
----------------------------------------
Assignee: Tomaz Cerar (was: Jean-Frederic Clere)
like the web one :D But more easy.
mod_cluster uses the same password for accessing sslKeyStore and
sslTrustStore
------------------------------------------------------------------------------
Key: AS7-4876
URL: https://issues.jboss.org/browse/AS7-4876
Project: Application Server 7
Issue Type: Bug
Components: Clustering
Affects Versions: 7.1.2.Final (EAP)
Reporter: Radoslav Husar
Assignee: Tomaz Cerar
Fix For: 7.2.0.CR1
Problem reported by Duncan Doyle.
The passwords shouldn't be forced to be the same, in AS5 they could have been
different.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
9:19 a.m.
[
https://issues.jboss.org/browse/AS7-4876?page=com.atlassian.jira.plugin.s...
]
Tomaz Cerar updated AS7-4876:
-----------------------------
Fix Version/s: 7.2.0.Alpha1
(was: 7.2.0.CR1)
Git Pull Request: https://github.com/jbossas/jboss-as/pull/2962 (was:
https://github.com/jbossas/jboss-as/pull/2962)
Affects Version/s: 7.1.1.Final
mod_cluster uses the same password for accessing sslKeyStore and
sslTrustStore
------------------------------------------------------------------------------
Key: AS7-4876
URL: https://issues.jboss.org/browse/AS7-4876
Project: Application Server 7
Issue Type: Bug
Components: Clustering
Affects Versions: 7.1.1.Final, 7.1.2.Final (EAP)
Reporter: Radoslav Husar
Assignee: Tomaz Cerar
Fix For: 7.2.0.Alpha1
Problem reported by Duncan Doyle.
The passwords shouldn't be forced to be the same, in AS5 they could have been
different.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
9:19 a.m.
[
https://issues.jboss.org/browse/AS7-4876?page=com.atlassian.jira.plugin.s...
]
Tomaz Cerar resolved AS7-4876.
------------------------------
Resolution: Done
merged in upstream
mod_cluster uses the same password for accessing sslKeyStore and
sslTrustStore
------------------------------------------------------------------------------
Key: AS7-4876
URL: https://issues.jboss.org/browse/AS7-4876
Project: Application Server 7
Issue Type: Bug
Components: Clustering
Affects Versions: 7.1.1.Final, 7.1.2.Final (EAP)
Reporter: Radoslav Husar
Assignee: Tomaz Cerar
Fix For: 7.2.0.CR1
Problem reported by Duncan Doyle.
The passwords shouldn't be forced to be the same, in AS5 they could have been
different.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
4478
days inactive
4606
days old
5 comments
5 participants
participants (5)
-
Brian Stansberry (JIRA) -
Jean-Frederic Clere (JIRA)
-
Michal Babacek (JIRA)
-
Radoslav Husar (JIRA)
-
Tomaz Cerar (JIRA)