[JGRP-1144] AUTH: X.509 issue with keystore Created: 29/Jan/10  Updated: 21/Apr/10  Resolved: 08/Apr/10

Status: Resolved
Project: JGroups
Component/s: None
Affects Version/s: None
Fix Version/s: 2.10

Type: Bug Priority: Major
Reporter: Bela Ban Assignee: Bela Ban
Resolution: Done Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
blocks JGRP-1187 AUTH - X509Token authentication failure Resolved


Draw with JGroups/conf/auth_x509.xml doesn't work:
[linux]/home/bela$ draw -props JGroups/conf/auth_X509.xml
fatal error: unable to setup the protocol stack, cause:
java.io.IOException: Invalid keystore format
at sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:633)
at sun.security.provider.JavaKeyStore$JKS.engineLoad(JavaKeyStore.java:38)
at java.security.KeyStore.load(KeyStore.java:1185)
at org.jgroups.auth.X509Token.setCertificate(X509Token.java:177)
at org.jgroups.protocols.AUTH.init(AUTH.java:58)
at org.jgroups.stack.ProtocolStack.initProtocolStack(ProtocolStack.java:647)
at org.jgroups.stack.ProtocolStack.setup(ProtocolStack.java:457)
at org.jgroups.JChannel.init(JChannel.java:1702)
at org.jgroups.JChannel.<init>(JChannel.java:243)
at org.jgroups.JChannel.<init>(JChannel.java:226)
at org.jgroups.demos.Draw.<init>(Draw.java:56)
at org.jgroups.demos.Draw.main(Draw.java:154)

Perhaps this is caused by our changes in the Bouncycastle JAR ?

Comment by Bela Ban [ 08/Apr/10 ]

X509Token.valueSet was never set to true, so all authentication failed. This is a regression from 2.6.x.

Generated at Wed Aug 15 04:48:03 EDT 2018 using JIRA 7.5.0#75005-sha1:fd8c849d4e278dd8bbaccc61e707a716ad697024.