Uploaded image for project: 'CXF'
  1. CXF
  2. CXF-4454

JSSE KeyManagers and TrustManager XML configurations are ignored if they contain no keystore element.

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 2.6.1
    • Fix Version/s: 2.4.9, 2.5.5, 2.6.2, 2.7
    • Component/s: Configuration
    • Labels:
      None
    • Environment:

      all

    • Estimated Complexity:
      Unknown

      Description

      The XSD for JSSE KeyManagers and TrustManagers allows them to not include a keystore (or certstore) element (which is correct). However the configured key and trust manager configurations are ignored and not applied if they contain no keystore configuration element (see TLSParameterJaxBUtils.java:239 and TLSParameterJaxBUtils.java:275).

      For a Trust- or KeyManager to not require a keystore configuration is a valid scenario. I'm currently using a JCE provider that does not require a keystore. With the current implementation I can not use this provider with the XML configuration feature. If I set the key and trust managers of this provider manually in the TLSClientParametersConfig using java code it works as expected.

        Attachments

          Activity

            People

            • Assignee:
              ay Akitoshi Yoshida
              Reporter:
              sstaible Sven Staible
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: