345658 – SslContextFactory#getKeyStore method assumes a file-based Java keystore

Some Eclipse Foundation services are deprecated, or will be soon. Please ensure you've read this important communication.

Bug 345658 - SslContextFactory#getKeyStore method assumes a file-based Java keystore

Summary: SslContextFactory#getKeyStore method assumes a file-based Java keystore

Status:	CLOSED DUPLICATE of bug 345679

Alias:	None

Product:	Jetty
Classification:	RT
Component:	server (show other bugs)
Version:	unspecified
Hardware:	PC Mac OS X - Carbon (unsup.)

Importance:	P3 normal (vote)
Target Milestone:	7.2.x
Assignee:	Michael Gorovoy
QA Contact:

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2011-05-12 16:09 EDT by Chad La Joie
Modified:	2011-05-12 20:46 EDT (History)
CC List:	4 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Chad La Joie

2011-05-12 16:09:39 EDT

Build Identifier: 7.3.1

SslContextFactory#getKeyStore method assumes that the keystore data is going to be coming from a file.  In most cases this is true, however if you are using a PKCS11 keystore or wish to construct a keystore from plain old PEM encoded files this isn't going to work.  A better approach would be to either have getter/setter methods for the keystore and truststore (and provide a few implementations that support different types of sources) or getKeystore and getTruststore methods that could be overridden within a subclass to do the appropriate thing.  I recommend the former.

Reproducible: Always

Comment 1 Michael Gorovoy

2011-05-12 20:44:09 EDT


*** This bug has been marked as a duplicate of bug 345679 ***

Comment 2 Michael Gorovoy

2011-05-12 20:46:46 EDT

I've created an enhancement ticket with a slightly bigger scope that matches the changes that I am going to commit.