Details
-
Bug
-
Resolution: Done
-
Major
-
None
-
PicketBox_4_0_19.Final
-
None
Description
There is a bug in JBossJSSESecurityDomain.java where it attempts to use the keystore/truststore provider to get instances of the trust manager.
The code reads:
if (trustManagerFactoryProvider != null)
trustManagerFactory = TrustManagerFactory.getInstance(algorithm, trustStoreProvider);
else
trustManagerFactory = TrustManagerFactory.getInstance(algorithm);
I think it should read:
if (trustManagerFactoryProvider != null)
trustManagerFactory = TrustManagerFactory.getInstance(algorithm, trustManagerFactoryProvider);
else
trustManagerFactory = TrustManagerFactory.getInstance(algorithm);