Quick Links

Re: PostgreSQL + SSL - sun.security.validator.ValidatorException

From:	Kris Jurka <books(at)ejurka(dot)com>
To:	Andrew M <andrew(at)jibeya(dot)com>
Cc:	John R Pierce <pierce(at)hogranch(dot)com>, pgsql-jdbc(at)postgresql(dot)org
Subject:	Re: PostgreSQL + SSL - sun.security.validator.ValidatorException
Date:	2004-12-11 12:33:41
Message-ID:	Pine.BSO.4.56.0412110728120.2747@leary.csoft.net
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-jdbc

On Sat, 11 Dec 2004, Andrew M wrote:

> The only problem with this is, how do you copy an openssl {key|crt}
> pair into a keytool keystore?

No this isn't the problem. The problem is telling the SSL implementation
that you want to use this cert for client authentication. The best I can
gather is that you would need to implement a javax.net.ssl.X509KeyManager
and make chooseClientAlias() return the alias of the cert you want to use
in the keystore. Implementing a X509KeyManager does not look like an easy
thing to do though and there doesn't seem to be a good way of only
extending part of it and falling back to the default implmentation for the
rest.

Kris Jurka

In response to

Re: PostgreSQL + SSL - sun.security.validator.ValidatorException at 2004-12-11 10:20:20 from Andrew M

Responses

Re: PostgreSQL + SSL - sun.security.validator.ValidatorException at 2004-12-11 15:50:31 from Andrew M

Browse pgsql-jdbc by date

	From	Date	Subject
Next Message	Nicolai Tufar	2004-12-11 12:55:08	Translation update: tr
Previous Message	Andrew M	2004-12-11 10:20:20	Re: PostgreSQL + SSL - sun.security.validator.ValidatorException