[QPID-8254] [Broker-J] Illegal ascii characters are used in keystore passwords - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: qpid-java-6.0.8, qpid-java-6.1.7, qpid-java-broker-7.0.6
Fix Version/s: qpid-java-broker-7.1.0, qpid-java-broker-7.0.7
Component/s: Broker-J
Labels:
None

Description

Illegal keystore password characters are used on creation of AutoGeneratedSelfSignedKeyStoreImpl and NonJavaKeyStoreImpl:

char[] chars = new char[64];
RANDOM.nextBytes(bytes);
StandardCharsets.US_ASCII.decode(ByteBuffer.wrap(bytes)).get(chars);
inMemoryKeyStore.load(null, chars);
inMemoryKeyStore.setKeyEntry("1", _privateKey, chars, certs);

Attachments

Activity

People

Assignee:: Alex Rudyy

Reporter:: Alex Rudyy

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 30/Oct/18 15:28

Updated:: 05/Jan/19 20:01

Resolved:: 07/Dec/18 10:01