[JBoss JIRA] (ELY-1680) IBM, failing KeyStoreSuiteChild.testGetCertificateChainBinary
- First Post
- Replies
- Stats
-
Go to
- ----- 2026 -----
- May
- April
- March
- February
- January
- ----- 2025 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2024 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
[
https://issues.jboss.org/browse/ELY-1680?page=com.atlassian.jira.plugin.s...
]
Jiri Ondrusek commented on ELY-1680:
------------------------------------
[~fjuma] I've looked into my backup from fixing ELY-1616 and here are some commands :
keytool -exportcert -keystore server.keystore.jks -storepass secret -alias localhost
-file ca.crt
keytool -exportcert -keystore server.truststore.jks -storepass secret -alias client -file
client.crt
openssl x509 -in ca.crt -inform der -outform pem -out ca.pem
openssl x509 -in client.crt -inform der -outform pem -out client.pem
./ldap-keystore-gen.sh client.pem ca.pem server.keystore.jks > example.ldif
(ldap-keystore-gen.sh is attached)
I suppose that test ldiffs were generate with similar commands, probably with different
name then in my example.
[~fjuma] I can look into this issue - may be it will help. If you agree, please let me
know.
IBM, failing KeyStoreSuiteChild.testGetCertificateChainBinary
-------------------------------------------------------------
Key: ELY-1680
URL: https://issues.jboss.org/browse/ELY-1680
Project: WildFly Elytron
Issue Type: Bug
Components: Testsuite
Affects Versions: 1.6.1.Final
Reporter: Martin Choma
Priority: Major
Fix For: 1.7.0.CR3
Attachments: ldap-keystore-gen.sh
{code}
[ERROR] testGetCertificateChainBinary(org.wildfly.security.ldap.KeyStoreSuiteChild) Time
elapsed: 0.057 s <<< FAILURE!
org.junit.ComparisonFailure: expected:<CN=[firefly_binary], OU=Elytron, O=Elyt...>
but was:<CN=[localhost], OU=Elytron, O=Elyt...>
at
org.wildfly.security.ldap.KeyStoreSuiteChild.testGetCertificateChainBinary(KeyStoreSuiteChild.java:136)
at
org.wildfly.security.ldap.DirContextFactoryRule$1.evaluate(DirContextFactoryRule.java:218)
{code}
If I switch order of certificates in chain, then test passes.
{code}
diff --git a/src/test/java/org/wildfly/security/ldap/KeyStoreSuiteChild.java
b/src/test/java/org/wildfly/security/ldap/KeyStoreSuiteChild.java
index d8095867a..cda635beb 100644
--- a/src/test/java/org/wildfly/security/ldap/KeyStoreSuiteChild.java
+++ b/src/test/java/org/wildfly/security/ldap/KeyStoreSuiteChild.java
@@ -133,8 +133,8 @@ public class KeyStoreSuiteChild {
Certificate[] chain = keyStore.getCertificateChain("firefly_binary");
Assert.assertNotNull(chain);
Assert.assertEquals(2, chain.length);
- Assert.assertEquals("CN=firefly_binary, OU=Elytron, O=Elytron, L=Elytron,
ST=Elytron, C=UK", ((X509Certificate)chain[0]).getSubjectDN().toString());
- Assert.assertEquals("CN=localhost, OU=Elytron, O=Elytron, L=Elytron,
ST=Elytron, C=UK", ((X509Certificate)chain[1]).getSubjectDN().toString());
+ Assert.assertEquals("CN=firefly_binary, OU=Elytron, O=Elytron, L=Elytron,
ST=Elytron, C=UK", ((X509Certificate)chain[1]).getSubjectDN().toString());
+ Assert.assertEquals("CN=localhost, OU=Elytron, O=Elytron, L=Elytron,
ST=Elytron, C=UK", ((X509Certificate)chain[0]).getSubjectDN().toString());
}
{code}
-For some reason I want able to debug code with -Dmaven.surefire.debug (Breakpoint was
never hit) to find out which calls switch the order.-
It takes long (5min) for debugger to attach to code.
--
This message was sent by Atlassian Jira
(v7.12.1#712002)
2777
days inactive
2777
days old
0 comments
1 participants
tags (0)
participants (1)
-
Jiri Ondrusek (Jira)