[ https://issues.apache.org/jira/browse/CASSANDRA-6847?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Mikhail Stepura reassigned CASSANDRA-6847: ------------------------------------------ Assignee: Mikhail Stepura > The binary transport doesn't load truststore file > ------------------------------------------------- > > Key: CASSANDRA-6847 > URL: https://issues.apache.org/jira/browse/CASSANDRA-6847 > Project: Cassandra > Issue Type: Bug > Reporter: Mikhail Stepura > Assignee: Mikhail Stepura > Priority: Minor > Labels: ssl > > {code:title=org.apache.cassandra.transport.Server.SecurePipelineFactory} > this.sslContext = SSLFactory.createSSLContext(encryptionOptions, false); > {code} > {{false}} there means that {{truststore}} file won't be loaded in any case. > And that means that the file will not be used to validate clients when > {{require_client_auth==true}}, making > http://www.datastax.com/documentation/cassandra/2.0/cassandra/security/secureNewTrustedUsers_t.html > meaningless. > The only way to workaround that currently is to start C* with > {{-Djavax.net.ssl.trustStore=conf/.truststore}} > I believe we should load {{truststore}} when {{require_client_auth==true}}, -- This message was sent by Atlassian JIRA (v6.2#6252)