Uploaded image for project: 'ActiveMQ C++ Client'
  1. ActiveMQ C++ Client
  2. AMQCPP-348

Allow unverified SSL peer

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Minor
    • Resolution: Fixed
    • 3.2.4
    • 3.2.5, 3.3.0
    • None
    • None

    Description

      When using an ssl: connection, attempting to only provide a client certificate via:

      decaf::lang::System::setProperty("decaf.net.ssl.keyStore", certfile);

      fails with the following:

      Error occurred while accessing an OpenSSL library method:
      error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
      Init failure ERROR: Error occurred while accessing an OpenSSL library method:
      error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed

      It would be nice if the library would set peer_verify to false if no decaf.net.ssl.trustStore was provided to allow the client to bypass verification of the broker.

      Attachments

        Activity

          People

            tabish Timothy A. Bish
            kquick Kevin Quick
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: