[jira] [Created] (GEODE-7022) SSL Alias Support for JMX Connections

JIRA Mon, 29 Jul 2019 08:30:33 -0700

Juan José Ramos Cassella created GEODE-7022:
-----------------------------------------------


             Summary: SSL Alias Support for JMX Connections
                 Key: GEODE-7022
                 URL: https://issues.apache.org/jira/browse/GEODE-7022
             Project: Geode
          Issue Type: Bug
          Components: jmx, security
            Reporter: Juan José Ramos Cassella


The {{*SslRMIClientSocketFactory*}} class, by default, always loads the first 
key that appears in the {{keystore}} and does not support the usage of 
{{aliases}}; Geode’s SSL implementation, on the other hand, uses the 
{{ssl-default-alias}} property to allow the usage of a particular key.
The above, in turn, might cause a {{JMX over SSL}} connection to fail whenever 
the {{keystore}} has more than one key imported (see 
[{{JmxOperationInvoker}}|https://github.com/apache/geode/blob/rel/v1.9.0/geode-core/src/main/java/org/apache/geode/management/internal/cli/shell/JmxOperationInvoker.java]
 and 
[{{ContextAwareSSLRMIClientSocketFactory}}|https://github.com/apache/geode/blob/rel/v1.9.0/geode-core/src/main/java/org/apache/geode/management/internal/ContextAwareSSLRMIClientSocketFactory.java]).




--
This message was sent by Atlassian JIRA
(v7.6.14#76016)

[jira] [Created] (GEODE-7022) SSL Alias Support for JMX Connections

Reply via email to