When we try to enable SSL3 using the admin console, we get the following
error displayed on the screen:
org.jvnet.hk2.config.ValidationException: Constraints for this bean
violated. Message = keyStoreType must match "(JKS|NSS)"
And in the server.log:
java.util.logging.ErrorManager: 5: Error in extracting Name Value Pairs
java.lang.NullPointerException
at
com.sun.enterprise.server.logging.UniformLogFormatter.getNameValuePairs(UniformLogFormatter.java:208)
at
com.sun.enterprise.server.logging.UniformLogFormatter.uniformLogFormat(UniformLogFormatter.java:276)
at
com.sun.enterprise.server.logging.UniformLogFormatter.format(UniformLogFormatter.java:161)
at java.util.logging.StreamHandler.publish(StreamHandler.java:179)
at java.util.logging.ConsoleHandler.publish(ConsoleHandler.java:88)
:
at java.lang.Thread.run(Thread.java:619)
RestResponse.getResponse() failed. endpoint =
'
http://localhost:4848/management/domain/configs/config/server-config/network-config/protocols/protocol/http-listener-2/ssl';
attrs = '{trustStoreType=null, ssl3TlsCiphers=,
keyStore=keystore.jks, crlFile=null, keyStorePasswordProvider=plain,
tlsRollbackEnabled=true, allowLazyInit=true,
keyStoreType=null,
classname=com.sun.enterprise.security.ssl.GlassfishSSLImpl, tlsEnabled=true,
trustMaxCertLength=5, ssl2Ciphers=null, keyAlgorithm=null,
keyStorePassword=null, trustStorePassword=null, trustStore=cacerts.jks,
clientAuthEnabled=true, ssl3Enabled=true, certNickname=s1as,
trustStorePasswordProvider=plain,
ssl2Enabled=false, trustAlgorithm=PKIX, clientAuth=}';
RestResponse: {"message":"org.jvnet.hk2.config.ValidationException:
Constraints for this bean violated. \n Message = keyStoreType must match
\"(JKS|NSS)\"",
"exit_code":"FAILURE"}
java.util.logging.ErrorManager: 5: Error in extracting Name Value Pairs
java.lang.NullPointerException
at
com.sun.enterprise.server.logging.UniformLogFormatter.getNameValuePairs(UniformLogFormatter.java:208)
at
com.sun.enterprise.server.logging.UniformLogFormatter.uniformLogFormat(UniformLogFormatter.java:276)
at
com.sun.enterprise.server.logging.UniformLogFormatter.format(UniformLogFormatter.java:161)
at java.util.logging.StreamHandler.publish(StreamHandler.java:179)
at
com.sun.enterprise.server.logging.GFFileHandler.log(GFFileHandler.java:533)
at
com.sun.enterprise.server.logging.GFFileHandler$2.run(GFFileHandler.java:184)
The KeyStoreType attribute is null, but there's no way to set that through
the admin console. Is this a bug in 3.1?
I was able to use the rest interface at
http://localhost:4848/management/domain/configs/config/server-config/network-config/protocols/protocol/http-listener-2/ssl
which allows you to set all the individual attributes.
Thanks,
Larry
--
View this message in context: http://old.nabble.com/Configuring-SSL3-in-V3.1-tp30195241p30195241.html
Sent from the java.net - glassfish users mailing list archive at Nabble.com.