Accessing some details on an invalid certificate
Marc-André Laverdière
marcandre.laverdiere at gmail.com
Tue May 24 22:16:07 EDT 2011
The pipeline is opaque... I think you'll need to subclass the SSLHandler.
Marc-André LAVERDIÈRE
"Perseverance must finish its work so that you may be mature and complete,
not lacking anything." -James 1:4
http://asimplediscipleslife.blogspot.com/
mlaverd.theunixplace.com
On Wed, May 25, 2011 at 1:12 AM, dpom <dfpomeroy at gmail.com> wrote:
> I am using the Netty SslHandler for TLS over a custom messaging protocol.
> Client authentication is enabled, and I am accessing certificate details in
> my channel handler using the following:
>
> sslHandler.getEngine().getSession().getPeerPrincipal();
>
> This is working fine when the client authenticates properly, but when a
> client tries to connect with an invalid certificate, I want to log some
> details about the bad certificate. The javax.net.ssl.SSLSession object
> throws a SSLPeerUnverifiedException when trying to access any details about
> the bad client.
>
> Has anyone had this problem before? Any suggestions on how to access the
> bad certificate within my handler?
>
> Thanks.
>
> --
> View this message in context: http://netty-forums-and-mailing-lists.685743.n2.nabble.com/Accessing-some-details-on-an-invalid-certificate-tp6400146p6400146.html
> Sent from the Netty User Group mailing list archive at Nabble.com.
> _______________________________________________
> netty-users mailing list
> netty-users at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/netty-users
>
More information about the netty-users
mailing list