OF-946: Preventing a NPE. Also: Keystore config must have password.

2627ce25 · Guus der Kinderen · 793b046b · 2627ce25 · 2627ce25
Commit 2627ce25 authored Nov 03, 2015 by Guus der Kinderen
Show whitespace changes
Inline Side-by-side

Showing with 8 additions and 3 deletions

Purpose.java src/java/org/jivesoftware/openfire/keystore/Purpose.java +1 -1

SSLConfig.java src/java/org/jivesoftware/openfire/net/SSLConfig.java +7 -2

No files found.
--- a/src/java/org/jivesoftware/openfire/keystore/Purpose.java
+++ b/src/java/org/jivesoftware/openfire/keystore/Purpose.java
@@ -226,7 +226,7 @@ public enum Purpose
    public String getCipherSuitesDisabled()
    {
        final String propertyName = prefix + "ciphersuites.disabled";
-        final String defaultValue = null;
+        final String defaultValue = "";
        if ( fallback == null )
        {

--- a/src/java/org/jivesoftware/openfire/net/SSLConfig.java
+++ b/src/java/org/jivesoftware/openfire/net/SSLConfig.java
@@ -532,8 +532,13 @@ public class SSLConfig
    {
        final SslContextFactory sslContextFactory = new SslContextFactory();
-        sslContextFactory.setTrustStore( SSLConfig.getTrustStore( purpose ) );
+        final TrustStoreConfig trustStoreConfig = SSLConfig.getInstance().getTrustStoreConfig( purpose );
-        sslContextFactory.setKeyStore( SSLConfig.getIdentityStore( purpose ) );
+        sslContextFactory.setTrustStore( trustStoreConfig.getStore() );
+        sslContextFactory.setTrustStorePassword( trustStoreConfig.getPassword() );
+        final IdentityStoreConfig identityStoreConfig = SSLConfig.getInstance().getIdentityStoreConfig( purpose );
+        sslContextFactory.setKeyStore( identityStoreConfig.getStore() );
+        sslContextFactory.setKeyStorePassword( identityStoreConfig.getPassword() );
        // Configure protocol and cipher suite support.
        if ( purpose.getProtocolsEnabled() != null ) {