Uploaded image for project: 'Apache NiFi MiNiFi C++'
  1. Apache NiFi MiNiFi C++
  2. MINIFICPP-1070

PKCS12 certificate chains are not handled correctly

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 0.7.0
    • None

    Description

      I found a couple of issues with the certificate handling:

      • SSLContextService ignores additional certs in the P12 file, which prevents the NiFi server to establish trust of the client certificate when it's signed by an intermediate CA.
      • TLSSocket only supports PEM certificates, so using P12 certs fails

      Attachments

        Issue Links

          links to

          Web Link GitHub Pull Request #666

          Activity

            People

              Unassigned Unassigned
              asdaraujo Andre Araujo
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 2h 20m
                  2h 20m