/[Apache-SVN]
ViewVC logotype

Revision 1352992


Jump to revision: Previous Next
Author: aconway
Date: Fri Jun 22 18:39:56 2012 UTC (12 years, 9 months ago)
Changed paths: 10
Log Message:
QPID-3849: Client connection breaks broker-to-broker cluster SASL authentication 

Catch-up shadow connections were not being authenticated which caused two problems:
- new brokers failed to join the cluster if there was an authenticated session.
- possible security loophole that would allow an intruder to gain access to a catch-up broker.

All external connections are now fully authenticated, which solves both problems.

Changed paths

Path Details
Directoryqpid/trunk/qpid/cpp/src/qpid/broker/Connection.cpp modified , text changed
Directoryqpid/trunk/qpid/cpp/src/qpid/broker/Connection.h modified , text changed
Directoryqpid/trunk/qpid/cpp/src/qpid/broker/ConnectionHandler.cpp modified , text changed
Directoryqpid/trunk/qpid/cpp/src/qpid/broker/ConnectionHandler.h modified , text changed
Directoryqpid/trunk/qpid/cpp/src/qpid/broker/SaslAuthenticator.cpp modified , text changed
Directoryqpid/trunk/qpid/cpp/src/qpid/broker/SaslAuthenticator.h modified , text changed
Directoryqpid/trunk/qpid/cpp/src/qpid/cluster/Connection.cpp modified , text changed
Directoryqpid/trunk/qpid/cpp/src/qpid/cluster/Connection.h modified , text changed
Directoryqpid/trunk/qpid/cpp/src/tests/cluster_tests.py modified , text changed
Directoryqpid/trunk/qpid/cpp/src/tests/sasl_test_setup.sh modified , text changed

infrastructure at apache.org
ViewVC Help
Powered by ViewVC 1.1.26