Skip site navigation (1) Skip section navigation (2)

Re: PostgreSQL + SSL - sun.security.validator.ValidatorException

From: Kris Jurka <books(at)ejurka(dot)com>
To: Andrew M <andrew(at)jibeya(dot)com>
Cc: John R Pierce <pierce(at)hogranch(dot)com>, pgsql-jdbc(at)postgresql(dot)org
Subject: Re: PostgreSQL + SSL - sun.security.validator.ValidatorException
Date: 2004-12-11 12:33:41
Message-ID: Pine.BSO.4.56.0412110728120.2747@leary.csoft.net (view raw or flat)
Thread:
Lists: pgsql-jdbc

On Sat, 11 Dec 2004, Andrew M wrote:

> The only problem with this is, how do you copy an openssl {key|crt} 
> pair into a keytool keystore?

No this isn't the problem.  The problem is telling the SSL implementation
that you want to use this cert for client authentication.  The best I can
gather is that you would need to implement a javax.net.ssl.X509KeyManager
and make chooseClientAlias() return the alias of the cert you want to use
in the keystore.  Implementing a X509KeyManager does not look like an easy
thing to do though and there doesn't seem to be a good way of only
extending part of it and falling back to the default implmentation for the 
rest.

Kris Jurka

In response to

Responses

pgsql-jdbc by date

Next:From: Nicolai TufarDate: 2004-12-11 12:55:08
Subject: Translation update: tr
Previous:From: Andrew MDate: 2004-12-11 10:20:20
Subject: Re: PostgreSQL + SSL - sun.security.validator.ValidatorException

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group