You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@cxf.apache.org by Christopher Richmond <cr...@referentia.com> on 2013/02/27 00:12:03 UTC

programmatic server and client with Java 7

Hello,

I had this example working fine with Java 6:

http://aruld.info/programming-ssl-for-jetty-based-cxf-services/

and my actual production code being modified from that, but this example
fails as soon as I use the latest Java 7. I believe it's because the server
or client is not making use of the key/trust stores properly or not
initializing them correctly for some reason.

CXF 2.6.1  Does anyone have any ideas what I need to change code wise to
make this work with Java 7?

Thanks

Re: programmatic server and client with Java 7

Posted by Freeman Fang <fr...@gmail.com>.

Hi,

For JDK7, also add
filter.getInclude().add(".*_WITH_AES_.*");

for cipher suites filter, this should work
－－－－－－－－－－－－－
Freeman(Yue) Fang

Red Hat, Inc. 
FuseSource is now part of Red Hat
Web: http://fusesource.com | http://www.redhat.com/
Twitter: freemanfang
Blog: http://freemanfang.blogspot.com
http://blog.sina.com.cn/u/1473905042
weibo: @Freeman小屋

On 2013-2-27, at 上午9:19, Christopher Richmond wrote:

> I have narrowed the problem down to this:
> 
>            FiltersType filter = new FiltersType();
>            filter.getInclude().add(".*_EXPORT_.*");
>            filter.getInclude().add(".*_EXPORT1024_.*");
>            filter.getInclude().add(".*_WITH_DES_.*");
>            filter.getInclude().add(".*_WITH_NULL_.*");
>            filter.getExclude().add(".*_DH_anon_.*");
>            tlsParams.setCipherSuitesFilter(filter);
> 
> If I don't actually call:
> 
> tlsParams.setCipherSuitesFilter(filter)
> 
> then the client and server work fine, but of course then no cipher suites
> would be loaded.  I am wondering why this works fine in Java 6 but not Java
> 7 r 07
> 
> Chris
> 
> 
> On Tue, Feb 26, 2013 at 1:12 PM, Christopher Richmond <
> crichmond@referentia.com> wrote:
> 
>> Hello,
>> 
>> I had this example working fine with Java 6:
>> 
>> http://aruld.info/programming-ssl-for-jetty-based-cxf-services/
>> 
>> and my actual production code being modified from that, but this example
>> fails as soon as I use the latest Java 7. I believe it's because the server
>> or client is not making use of the key/trust stores properly or not
>> initializing them correctly for some reason.
>> 
>> CXF 2.6.1  Does anyone have any ideas what I need to change code wise to
>> make this work with Java 7?
>> 
>> Thanks
>>

Re: programmatic server and client with Java 7

Posted by Christopher Richmond <cr...@referentia.com>.

I have narrowed the problem down to this:

            FiltersType filter = new FiltersType();
            filter.getInclude().add(".*_EXPORT_.*");
            filter.getInclude().add(".*_EXPORT1024_.*");
            filter.getInclude().add(".*_WITH_DES_.*");
            filter.getInclude().add(".*_WITH_NULL_.*");
            filter.getExclude().add(".*_DH_anon_.*");
            tlsParams.setCipherSuitesFilter(filter);

If I don't actually call:

 tlsParams.setCipherSuitesFilter(filter)

then the client and server work fine, but of course then no cipher suites
would be loaded.  I am wondering why this works fine in Java 6 but not Java
7 r 07

Chris


On Tue, Feb 26, 2013 at 1:12 PM, Christopher Richmond <
crichmond@referentia.com> wrote:

> Hello,
>
> I had this example working fine with Java 6:
>
> http://aruld.info/programming-ssl-for-jetty-based-cxf-services/
>
> and my actual production code being modified from that, but this example
> fails as soon as I use the latest Java 7. I believe it's because the server
> or client is not making use of the key/trust stores properly or not
> initializing them correctly for some reason.
>
> CXF 2.6.1  Does anyone have any ideas what I need to change code wise to
> make this work with Java 7?
>
> Thanks
>