Re: SSL connection issue with JDBC

Поиск
Список
Период
Сортировка
От Dave Cramer
Тема Re: SSL connection issue with JDBC
Дата
Msg-id CADK3HH+SqLfeW6Nsj3i+RHk5+WaCxSPt+3R4Sbj09A8=49G=+A@mail.gmail.com
обсуждение исходный текст
Ответ на Re: SSL connection issue with JDBC  (David Wall <d.wall@computer.org>)
Ответы RE: SSL connection issue with JDBC
Список pgsql-jdbc
Дерево обсуждения
One thing is the certs for java have to be in DER format.


  • Note: The key file must be in DER format. A PEM key can be converted to DER format using the openssl command:

    openssl pkcs8 -topk8 -inform PEM -in my.key -outform DER -out my.key.der



On Tue, 14 May 2019 at 13:07, David Wall <d.wall@computer.org> wrote:
On 5/14/19 9:31 AM, Rob Sargent wrote:

If I use latest JDBC postgrsql driver "postgresql-42.2.5" then I get below error.

 Anup

Update you jdbc driver to current release.


Sounds like that was done.

Are you sure your SSL certs are recognized?  The original exception suggests an issue with trust along the chain:

Caused by: java.security.cert.CertPathValidatorException: The certificate issued by CN=certificate-authority is not trusted; internal cause is:

                java.security.cert.CertPathValidatorException: Certificate chaining error

That does seem an unexpected CN.  Both your java cacerts and postgres would have to share the CA certs needed to validate the full chain.

David

В списке pgsql-jdbc по дате отправления: