Added a test to ensure that if the client does not trust the server then it blows up. This is caught by setting an exceptionHandler, which inexplicably, isn't exposed through the ConnectionFactory (which is also the strangest Factory I've ever seen as it's stateful). So had to add API to the factory to allow the exceptionHandler to be set (which I *hate* because it'll be reused for every new connection which means if it's stateful then you're screwed, but the alternative is to multiply out the 3 overloaded newConnection methods to to 6 which I hate more).

And of course the test itself is racy, hence the synchronisation between the threads and the potential sitting there for 10 seconds doing nothing if it doesn't blow up as expected, and if the thread keeps being spuriously woken up then it'll continually wait.

However, it does indeed work for me.

Author: Matthew Sackman

build.xml

@@ -140,10 +140,24 @@
       <arg value="-dname"/>
       <arg value="CN=test, OU=test, O=test, L=test, S=test, C=pluto"/>
     </exec>
+    <exec executable="mktemp" outputproperty="CLIENT_KEYSTORE_EMPTY" failonerror="true" osfamily="unix">
+      <arg value="-u"/>
+    </exec>
+    <exec executable="keytool" failonerror="true" osfamily="unix" inputstring="\n\n">
+      <arg value="-genkey"/>
+      <arg value="-keystore"/>
+      <arg value="${CLIENT_KEYSTORE_EMPTY}"/>
+      <arg value="-noprompt"/>
+      <arg value="-storepass"/>
+      <arg value="${CLIENT_KEYSTORE_PHRASE}"/>
+      <arg value="-dname"/>
+      <arg value="CN=test, OU=test, O=test, L=test, S=test, C=pluto"/>
+    </exec>
   </target>
 
   <target name="remove-client-keystore" if="SSL_AVAILABLE">
     <delete file="${CLIENT_KEYSTORE}" failonerror="false"/>
+    <delete file="${CLIENT_KEYSTORE_EMPTY}" failonerror="false"/>
   </target>
 
   <target name="test-prepare">
@@ -322,6 +336,7 @@
         fork="yes">
       <classpath refid="test.classpath"/>
       <jvmarg value="-Dkeystore.path=${CLIENT_KEYSTORE}"/>
+      <jvmarg value="-Dkeystore.empty.path=${CLIENT_KEYSTORE_EMPTY}"/>
       <jvmarg value="-Dkeystore.phrase=${CLIENT_KEYSTORE_PHRASE}"/>
 
       <formatter type="plain"/>

src/com/rabbitmq/client/ConnectionFactory.java

@@ -41,6 +41,8 @@
 import javax.net.ssl.TrustManager;
 
 import com.rabbitmq.client.impl.AMQConnection;
+import com.rabbitmq.client.impl.DefaultExceptionHandler;
+import com.rabbitmq.client.impl.ExceptionHandler;
 import com.rabbitmq.client.impl.FrameHandler;
 import com.rabbitmq.client.impl.SocketFrameHandler;
 
@@ -56,6 +58,11 @@ public class ConnectionFactory {
      */
     private SocketFactory _factory = SocketFactory.getDefault();
 
+    /**
+     * Holds the ExceptionHandler used in new AMQConnections
+     */
+    private ExceptionHandler _exceptionHandler = new DefaultExceptionHandler();
+    
     /**
      * Instantiate a ConnectionFactory with a default set of parameters.
      */
@@ -97,6 +104,23 @@ public void setSocketFactory(SocketFactory factory) {
         _factory = factory;
     }
 
+    /**
+     * Retrieve the ExceptionHandler used in new AMQConnections
+     * @return 
+     */
+    public ExceptionHandler getExceptionHandler() {
+        return _exceptionHandler;
+    }
+    
+    /**
+     * Set the ExceptionHandler used in new AMQConnections
+     * 
+     * @param handler The ExceptionHandler to use
+     */
+    public void setExceptionHandler(ExceptionHandler handler) {
+        _exceptionHandler = handler;
+    }
+    
     /**
      * Convenience method for setting up a SSL socket factory, using
      * the DEFAULT_SSL_PROTOCOL and a trusting TrustManager.
@@ -173,7 +197,7 @@ private Connection newConnection(Address[] addrs,
                         redirectCount = 0;
                     boolean allowRedirects = redirectCount < maxRedirects;
                     try {
-                        return new AMQConnection(_params, !allowRedirects, frameHandler);
+                        return new AMQConnection(_params, !allowRedirects, frameHandler, _exceptionHandler);
                     } catch (RedirectException e) {
                         if (!allowRedirects) {
                             //this should never happen with a well-behaved server

test/src/com/rabbitmq/client/test/ssl/BadVerifiedConnection.java

@@ -0,0 +1,138 @@
+//   The contents of this file are subject to the Mozilla Public License
+//   Version 1.1 (the "License"); you may not use this file except in
+//   compliance with the License. You may obtain a copy of the License at
+//   http://www.mozilla.org/MPL/
+//
+//   Software distributed under the License is distributed on an "AS IS"
+//   basis, WITHOUT WARRANTY OF ANY KIND, either express or implied. See the
+//   License for the specific language governing rights and limitations
+//   under the License.
+//
+//   The Original Code is RabbitMQ.
+//
+//   The Initial Developers of the Original Code are LShift Ltd,
+//   Cohesive Financial Technologies LLC, and Rabbit Technologies Ltd.
+//
+//   Portions created before 22-Nov-2008 00:00:00 GMT by LShift Ltd,
+//   Cohesive Financial Technologies LLC, or Rabbit Technologies Ltd
+//   are Copyright (C) 2007-2008 LShift Ltd, Cohesive Financial
+//   Technologies LLC, and Rabbit Technologies Ltd.
+//
+//   Portions created by LShift Ltd are Copyright (C) 2007-2009 LShift
+//   Ltd. Portions created by Cohesive Financial Technologies LLC are
+//   Copyright (C) 2007-2009 Cohesive Financial Technologies
+//   LLC. Portions created by Rabbit Technologies Ltd are Copyright
+//   (C) 2007-2009 Rabbit Technologies Ltd.
+//
+//   All Rights Reserved.
+//
+//   Contributor(s): ______________________________________.
+//
+package com.rabbitmq.client.test.ssl;
+
+import java.io.FileInputStream;
+import java.io.IOException;
+import java.security.KeyManagementException;
+import java.security.KeyStore;
+import java.security.KeyStoreException;
+import java.security.NoSuchAlgorithmException;
+import java.security.UnrecoverableKeyException;
+import java.security.cert.CertificateException;
+
+import javax.net.ssl.KeyManagerFactory;
+import javax.net.ssl.SSLContext;
+import javax.net.ssl.TrustManagerFactory;
+
+import com.rabbitmq.client.Channel;
+import com.rabbitmq.client.Connection;
+import com.rabbitmq.client.ConnectionFactory;
+import com.rabbitmq.client.Consumer;
+import com.rabbitmq.client.impl.ExceptionHandler;
+
+/**
+ * Test for bug 19356 - SSL Support in rabbitmq
+ *
+ */
+public class BadVerifiedConnection extends UnverifiedConnection {
+    private boolean exceptionCaught = false;
+
+    public void openConnection()
+        throws IOException
+    {
+        final Object lock = new Object();
+        
+        connectionFactory = new ConnectionFactory();
+        connectionFactory.setExceptionHandler(new ExceptionHandler() {
+
+            public void handleConsumerException(Channel channel,
+                    Throwable exception, Consumer consumer, String consumerTag,
+                    String methodName) {
+            }
+
+            public void handleReturnListenerException(Channel channel,
+                    Throwable exception) {
+            }
+
+            public void handleUnexpectedConnectionDriverException(
+                    Connection conn, Throwable exception) {
+                synchronized (lock) {
+                    exceptionCaught = true;
+                    lock.notifyAll();
+                }
+            }});
+        
+        try {
+            String keystorePath = System.getProperty("keystore.empty.path");
+            assertNotNull(keystorePath);
+            String keystorePasswd = System.getProperty("keystore.phrase");
+            assertNotNull(keystorePasswd);
+            char [] passphrase = keystorePasswd.toCharArray();
+
+            KeyStore ks = KeyStore.getInstance("JKS");
+            ks.load(new FileInputStream(keystorePath), passphrase);
+
+            KeyManagerFactory kmf = KeyManagerFactory.getInstance("SunX509");
+            kmf.init(ks, passphrase);
+
+            TrustManagerFactory tmf = TrustManagerFactory.getInstance("SunX509");
+            tmf.init(ks);
+
+            SSLContext c = SSLContext.getInstance("SSLv3");
+            c.init(kmf.getKeyManagers(), tmf.getTrustManagers(), null);
+
+            connectionFactory.useSslProtocol(c);
+        } catch (NoSuchAlgorithmException ex) {
+            throw new IOException(ex.toString());
+        } catch (KeyManagementException ex) {
+            throw new IOException(ex.toString());
+        } catch (KeyStoreException ex) {
+            throw new IOException(ex.toString());
+        } catch (CertificateException ex) {
+            throw new IOException(ex.toString());
+        } catch (UnrecoverableKeyException ex) {
+            throw new IOException(ex.toString());
+        }
+
+        if (connection == null) {
+            try {
+                connection = connectionFactory.newConnection("localhost", 5671);
+                fail();
+            } catch (Throwable e) {
+                synchronized (lock) {
+                    while (! exceptionCaught) {
+                        try {
+                            lock.wait(10000);
+                            if (! exceptionCaught) {
+                                fail();
+                            }
+                        } catch (InterruptedException e1) {
+                        }
+                    }
+                }
+            }
+        }
+    }
+
+    public void openChannel() {}
+    public void testSSL() {}
+}

test/src/com/rabbitmq/client/test/ssl/SSLTests.java

@@ -39,6 +39,7 @@ public static TestSuite suite() {
         TestSuite suite = new TestSuite("ssl");
         suite.addTestSuite(UnverifiedConnection.class);
         suite.addTestSuite(VerifiedConnection.class);
+        suite.addTestSuite(BadVerifiedConnection.class);
         return suite;
     }
 }