[jboss-jira] [JBoss JIRA] (SECURITY-762) Bug in JBossJSSESecurityDomain.java - attempting to use wrong provider

Derek Horton (JIRA) jira-events at lists.jboss.org
Thu Oct 24 11:16:02 EDT 2013 

     [ https://issues.jboss.org/browse/SECURITY-762?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Derek Horton updated SECURITY-762:
----------------------------------

    Steps to Reproduce: 
Steps to Reproduce:
Setup a security-domain that defines a JSSE keystore/truststore:

   <!-- keystore works
                    <jsse keystore-url="/home/dehort/dev/java/jboss-eap-6.1.1/standalone/configuration/server.keystore"
                      keystore-password="123456" 
                      key-manager-factory-algorithm="SunX509" 
                      key-manager-factory-provider="SunJSSE"/>
   -->
  
   <!-- truststore configured the same way fails -->
                    <jsse truststore-url="/home/dehort/dev/java/jboss-eap-6.1.1/standalone/configuration/server.keystore"
                      truststore-password="123456" 
                      trust-manager-factory-algorithm="SunX509" 
                      trust-manager-factory-provider="SunJSSE"/>


  was:


Steps to Reproduce:
Setup a security-domain that defines a JSSE keystore/truststore:
+                    <!--
+                    <jsse keystore-url="/home/dehort/dev/java/jboss-eap-6.1.1/standalone/configuration/server.keystore"
+                      keystore-password="123456" 
+                      key-manager-factory-algorithm="SunX509" 
+                      key-manager-factory-provider="SunJSSE"/>
+                    -->
+                    <jsse truststore-url="/home/dehort/dev/java/jboss-eap-6.1.1/standalone/configuration/server.keystore"
+                      truststore-password="123456" 
+                      trust-manager-factory-algorithm="SunX509" 
+                      trust-manager-factory-provider="SunJSSE"/>



    
> Bug in JBossJSSESecurityDomain.java - attempting to use wrong provider
> ----------------------------------------------------------------------
>
>                 Key: SECURITY-762
>                 URL: https://issues.jboss.org/browse/SECURITY-762
>             Project: PicketBox 
>          Issue Type: Bug
>      Security Level: Public(Everyone can see) 
>          Components: JBossSX
>    Affects Versions: PicketBox_4_0_19.Final
>            Reporter: Derek Horton
>            Assignee: Anil Saldhana
>
> There is a bug in JBossJSSESecurityDomain.java where it attempts to use the keystore/truststore provider to get instances of the trust manager.
> The code reads:
>          if (trustManagerFactoryProvider != null)
>             trustManagerFactory = TrustManagerFactory.getInstance(algorithm, trustStoreProvider);
>          else
>             trustManagerFactory = TrustManagerFactory.getInstance(algorithm);
> I think it should read:
>          if (trustManagerFactoryProvider != null)
>             trustManagerFactory = TrustManagerFactory.getInstance(algorithm, trustManagerFactoryProvider);
>          else
>             trustManagerFactory = TrustManagerFactory.getInstance(algorithm);

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the jboss-jira mailing list