Uploaded image for project: 'Geode'
  1. Geode
  2. GEODE-7022

SSL Alias Support for JMX Connections

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 1.10.0
    • Component/s: jmx, security
    • Labels:

      Description

      The SslRMIClientSocketFactory class, by default, always loads the first key that appears in the keystore and does not support the usage of aliases; Geode’s SSL implementation, on the other hand, uses the ssl-default-alias property to allow the usage of a particular key.
      The above, in turn, might cause a JMX over SSL connection to fail whenever the keystore has more than one key imported (see JmxOperationInvoker and ContextAwareSSLRMIClientSocketFactory).

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                jujoramos Juan José Ramos Cassella
                Reporter:
                jujoramos Juan José Ramos Cassella
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 3h 40m
                  3h 40m