Uploaded image for project: 'Geode'
  1. Geode
  2. GEODE-7022

SSL Alias Support for JMX Connections

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 1.10.0
    • jmx, security

    Description

      The SslRMIClientSocketFactory class, by default, always loads the first key that appears in the keystore and does not support the usage of aliases; Geode’s SSL implementation, on the other hand, uses the ssl-default-alias property to allow the usage of a particular key.
      The above, in turn, might cause a JMX over SSL connection to fail whenever the keystore has more than one key imported (see JmxOperationInvoker and ContextAwareSSLRMIClientSocketFactory).

      Attachments

        Issue Links

          Activity

            People

              jjramos Juan Ramos
              jjramos Juan Ramos
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 3h 40m
                  3h 40m