Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
qpid-java-6.0.8, qpid-java-6.1.7, qpid-java-broker-7.0.6
-
None
Description
Illegal keystore password characters are used on creation of AutoGeneratedSelfSignedKeyStoreImpl and NonJavaKeyStoreImpl:
char[] chars = new char[64]; RANDOM.nextBytes(bytes); StandardCharsets.US_ASCII.decode(ByteBuffer.wrap(bytes)).get(chars); inMemoryKeyStore.load(null, chars); inMemoryKeyStore.setKeyEntry("1", _privateKey, chars, certs);