You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@activemq.apache.org by "Christopher L. Shannon (JIRA)" <ji...@apache.org> on 2016/09/06 14:16:20 UTC

[jira] [Created] (AMQ-6418) Peer certificates are not always set when using the auto transports with ssl

Christopher L. Shannon created AMQ-6418:
-------------------------------------------

             Summary: Peer certificates are not always set when using the auto transports with ssl
                 Key: AMQ-6418
                 URL: https://issues.apache.org/jira/browse/AMQ-6418
             Project: ActiveMQ
          Issue Type: Bug
          Components: Broker
    Affects Versions: 5.14.0
            Reporter: Christopher L. Shannon
            Assignee: Christopher L. Shannon


There are two problems with the auto ssl transport that is causing the peer certificates to not always be available and set on the ConnectionInfo object during connection.  First, for auto+nio+ssl, the auto init transport needs to have transport properties applied.  This is because the initialization transport does the SSL handshake so it needs to know whether or not transport.needClientAuth or transport.wantClientAuth is set.  Right now these properties are not processed so it never gets passed to the SSL socket which means none of the protocols have peer certs available over auto+nio+ssl.  Second, the Stomp transport is not properly setting the peer certs when using auto+ssl and not using NIO.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)