Uploaded image for project: 'Hot Rod Native client'
  1. Hot Rod Native client
  2. HRCPP-311

Client should load PEM certificate also from file

    XMLWordPrintable

Details

    • Enhancement
    • Resolution: Done
    • Major
    • 8.1.0.CR1, 8.1.0.Final
    • None
    • Core
    • None

    Description

      The method sslConfBuilder.Enable().ServerCAFile(filename) doesn't work in Windows.
      The client has to register the trusted server certificate via MMC (Microsoft Management Console) in Windows.

      Registering the certificate has to be done manually.
      How to: http://www.databasemart.com/howto/SQLoverssl/How_To_Install_Trusted_Root_Certification_Authority_With_MMC.aspx

      However, the ServerCAFile still has to be used (aside from registering the file manually in Windows) otherwise JDG throws the following error when calling an operation on the cache:
      4: System.AccessViolationException : Attempted to read or write protected mem
      ory. This is often an indication that other memory is corrupt.
      4: at Infinispan.HotRod.SWIGGen.hotrodcsPINVOKE.new_RemoteCacheManager_SWIG
      4(HandleRef jarg1, Boolean jarg2)
      4: at Infinispan.HotRod.SWIGGen.RemoteCacheManager..ctor(Configuration config
      uration, Boolean start) in C:\workdir\dotnet-client\build_windows\swig\RemoteCac
      heManager.cs:line 96
      4: at Infinispan.HotRod.RemoteCacheManager..ctor(Configuration configuration,
      Boolean start) in C:\workdir\dotnet-client\src\main\cs\Infinispan\HotRod\Remote
      CacheManager.cs:line 61

      Attachments

        Issue Links

          causes

          Bug - A problem that impairs or prevents the functions of the product. JDG-700 TLS tests fail on Windows

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          relates to

          Bug - A problem that impairs or prevents the functions of the product. JDG-565 Registering trusted server certificate via configuration builder does not work on Windows

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Enhancement - An enhancement to or refactoring of existing functionality that is not configurable by an end user (typically a change made by an internal team that affects users) HRCPP-265 Use SChannel on Windows instead of OpenSSL

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved

          Activity

            People

              vrigamon@redhat.com Vittorio Rigamonti
              vrigamon@redhat.com Vittorio Rigamonti
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: