[jboss-jira] [JBoss JIRA] (AS7-4876) mod_cluster uses the same password for accessing sslKeyStore and sslTrustStore

Michal Babacek (JIRA) jira-events at lists.jboss.org
Wed May 23 12:04:17 EDT 2012 

    [ https://issues.jboss.org/browse/AS7-4876?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12695160#comment-12695160 ] 

Michal Babacek commented on AS7-4876:
-------------------------------------


h4. Explanation

*certificate-key-file* represents former property *sslKeyStore* and
*ca-certificate-file* represents former property *sslTrustStore*.

In AS5 we had these password properties:
{code}
  +++
  <property name="sslTrustStorePassword">tomcat</property>
  <property name="sslKeyStorePass">tomcat</property>
  +++
{code}
whereas in AS7 modcluster subsystem, there is only:
{code}
  +++
      String PASSWORD = "password";
  +++
{code}
property in [CommonAttributes.java|https://github.com/jbossas/jboss-as/blob/master/modcluster/src/main/java/org/jboss/as/modcluster/CommonAttributes.java]

and the most importantly:
{code}
  +++
  [139] if (password.isDefined()) {
  [140]     config.setSslTrustStorePassword(password.asString());
  [141]     config.setSslKeyStorePassword(password.asString());
  [142] }
  +++
{code}
in [ModClusterSubsystemAdd.java|https://github.com/jbossas/jboss-as/blob/master/modcluster/src/main/java/org/jboss/as/modcluster/ModClusterSubsystemAdd.java], the aforementioned code uses the same "password" property's value both
for accessing  *sslKeyStore* and *sslTrustStore*.


                
> mod_cluster uses the same password for accessing sslKeyStore and sslTrustStore
> ------------------------------------------------------------------------------
>
>                 Key: AS7-4876
>                 URL: https://issues.jboss.org/browse/AS7-4876
>             Project: Application Server 7
>          Issue Type: Bug
>          Components: Clustering
>    Affects Versions: 7.1.2.Final (EAP)
>            Reporter: Radoslav Husar
>            Assignee: Jean-Frederic Clere
>             Fix For: 7.1.3.Final (EAP)
>
>
> Problem reported by Duncan Doyle.
> The passwords shouldn't be forced to be the same, in AS5 they could have been different.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the jboss-jira mailing list