[jira] Created: (AMQ-2449) Peer certificates not propagated when using stomp+ssl w/mutual authentication

Tue, 13 Oct 2009 11:54:18 -0700 

 Peer certificates not propagated when using stomp+ssl w/mutual authentication
------------------------------------------------------------------------------

                 Key: AMQ-2449
                 URL: https://issues.apache.org/activemq/browse/AMQ-2449
             Project: ActiveMQ
          Issue Type: Bug
          Components: Transport
    Affects Versions: 5.3.0
         Environment: ActiveMQ 5.x
            Reporter: Dave Stanley


When using stomp+ssl w/mutual authentication the broker throws and "Unable to 
authenticate transport without SSL certificate.", for example:

java.lang.SecurityException: Unable to authenticate transport without SSL 
certificate.
at 
org.apache.activemq.security.JaasCertificateAuthenticationBroker.addConnection(JaasCertificateAuthenticationBroker.java:75)
at 
org.apache.activemq.broker.MutableBrokerFilter.addConnection(MutableBrokerFilter.java:89)
at 
org.apache.activemq.broker.TransportConnection.processAddConnection(TransportConnection.java:686)
at 
org.apache.activemq.broker.jmx.ManagedTransportConnection.processAddConnection(ManagedTransportConnection.java:86)
at org.apache.activemq.command.ConnectionInfo.visit(ConnectionInfo.java:134)
at 
org.apache.activemq.broker.TransportConnection.service(TransportConnection.java:308)
at 
org.apache.activemq.broker.TransportConnection$1.onCommand(TransportConnection.java:182)
at 
org.apache.activemq.transport.TransportFilter.onCommand(TransportFilter.java:68)
at 
org.apache.activemq.transport.InactivityMonitor.onCommand(InactivityMonitor.java:210)
at 
org.apache.activemq.transport.stomp.StompTransportFilter.sendToActiveMQ(StompTransportFilter.java:78)
at 
org.apache.activemq.transport.stomp.ProtocolConverter.sendToActiveMQ(ProtocolConverter.java:135)
at 
org.apache.activemq.transport.stomp.ProtocolConverter.onStompConnect(ProtocolConverter.java:491)
at 
org.apache.activemq.transport.stomp.ProtocolConverter.onStompCommand(ProtocolConverter.java:187)
at 
org.apache.activemq.transport.stomp.StompTransportFilter.onCommand(StompTransportFilter.java:67)
at 
org.apache.activemq.transport.TransportSupport.doConsume(TransportSupport.java:84)
at 
org.apache.activemq.transport.tcp.SslTransport.doConsume(SslTransport.java:104)
at org.apache.activemq.transport.tcp.TcpTransport.doRun(TcpTransport.java:203)
at org.apache.activemq.transport.tcp.TcpTransport.run(TcpTransport.java:185)
at java.lang.Thread.run(Thread.java:636)

Problem is due to the peer certs not being set in the transport context for the 
stomp connection.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Reply via email to