Skip site navigation (1) Skip section navigation (2)

Re: PostgreSQL + SSL - sun.security.validator.ValidatorException

From: Andrew M <andrew(at)jibeya(dot)com>
To: pgsql-jdbc(at)postgresql(dot)org
Subject: Re: PostgreSQL + SSL - sun.security.validator.ValidatorException
Date: 2004-12-09 00:44:39
Message-ID: 8205B1BB-497B-11D9-870C-0003938366A4@jibeya.com (view raw or flat)
Thread:
Lists: pgsql-jdbc
Ok chaps,
last and final questions with all this. One the server side postgreSQL 
expects the following docs in the /data folder:

1. server.crt, server.key, root.crt, root.key

Now for the for handshaking to be successful with the root docs in the 
/data folder, postgresql expects the client to return a certificate. So 
my question is:

Where is postgresql expecting the certificate to come from, and what 
format does the certificate take (in terms of postgresql knowing that 
the client is a valid one)?

regards

Andrew

On 8 Dec 2004, at 13:37, Vadim Nasardinov wrote:

> On Wednesday 08 December 2004 05:06, Andrew M wrote:
>> I'm nearly there but not yet.....
> ...
>> I specify properties in jboss like so:
>>
>> 	javax.net.ssl.keyStore=/library/java/home/lib/security/cacerts
>> 	javax.net.ssl.keyStorePassword=changeit
>> 	javax.net.ssl.keyStoreType= JKS
>
>
> This is starting to look increasingly like a JBoss-specific issue that
> you may have better luck finding a solution to if you direct your
> questions to the JBoss crowd.  I, for one, haven't done anything with
> keycerts in a long time.
>
>
>> The error message I get back is:
>> 	sun.security.validator.ValidatorException: No trusted certificate 
>> found
> ...
>> I  get the following error:
>> 	java.net.SocketException: Default SSL context init failed: null
>
> It is generally more informative to post the entire stack trace.
>
>


In response to

Responses

pgsql-jdbc by date

Next:From: Euler Taveira de OliveiraDate: 2004-12-09 02:44:54
Subject: Translation update: pt_BR
Previous:From: Andrew MDate: 2004-12-08 20:01:13
Subject: LOG: could not accept SSL connection: peer did not return a certificate....

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group