[
https://issues.apache.org/jira/browse/QPID-3973?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13279025#comment-13279025
]
Rob Godfrey commented on QPID-3973:
-----------------------------------
Applied a lightly modified version of the patch.
The patch had a bug where the keyStoreType and keyStorePassword fields were
passed in the wrong order on creation of the QpidClientX509KeyManager - this
was picked up by one of the existing unit tests which failed on inital
application of this patch.
There were also a couple of deviations from our style guidelines.
> QPID Java SSLUtil does not support non-JKS key store types
> ----------------------------------------------------------
>
> Key: QPID-3973
> URL: https://issues.apache.org/jira/browse/QPID-3973
> Project: Qpid
> Issue Type: Bug
> Components: Java Client, Java Common
> Affects Versions: 0.10, 0.14, 0.17
> Environment: Java 1.6 in FIPS mode (NSS)
> Reporter: Jesse Sightler
> Assignee: Rob Godfrey
> Labels: nss, pkcs11
> Fix For: 0.17
>
> Attachments: 2012_05_08_Master_Patch.diff, qpid-java.diff
>
>
> We are required to run our system in FIPS-compliant mode, using the NSS
> library for Java Security. In this mode, we cannot use JKS for private key
> storage.
> Unfortunately, SSLUtil does not support configurable KeyStore types, and will
> throw an exception if we attempt to do this.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
