Uploaded image for project: 'Qpid Proton'
  1. Qpid Proton
  2. PROTON-1447

Unable to provide multiple certificates using setTrustedCaDb

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: proton-j-0.18.0
    • Fix Version/s: proton-j-0.19.0
    • Component/s: proton-j
    • Labels:
      None
    • Environment:
      JDK 1.8.0_121

      Description

      Using http://qpid.apache.org/releases/qpid-proton-0.9.1/proton/java/api/org/apache/qpid/proton/engine/impl/ssl/SslDomainImpl.html#setTrustedCaDb(java.lang.String) to set the certificate will work only on the top most certificate provided in the input stream because readCertificate from SslEngineFacadeFactory.java uses generateCertificate which gets only the first certificate that holds between "----BEGIN CERTIFICATE---" and "---END CERTIFICATE----". If more than one are provided then you either need to loop and take one at a time calling generateCertificate or use generateCertificates. Please provide a fix for this asap as this is blocking our roll out of further certificates.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                rgodfrey Rob Godfrey
                Reporter:
                prmathur@microsoft.com Priyanka Mathur
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: