[jboss-jira] [JBoss JIRA] (WFLY-10950) JDK11 basic LdapLoginModuleTestCase failure
Jan Kalina (JIRA)
issues at jboss.org
Thu Sep 6 09:27:00 EDT 2018
[ https://issues.jboss.org/browse/WFLY-10950?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13629904#comment-13629904 ]
Jan Kalina commented on WFLY-10950:
-----------------------------------
Note: it looks this has alternative solution: setting com.sun.jndi.ldap.object.disableEndpointIdentification property - see WFLY-10914
> JDK11 basic LdapLoginModuleTestCase failure
> --------------------------------------------
>
> Key: WFLY-10950
> URL: https://issues.jboss.org/browse/WFLY-10950
> Project: WildFly
> Issue Type: Sub-task
> Components: Test Suite
> Reporter: Jan Kalina
> Assignee: Jan Kalina
>
> {code}
> cd testsuite/integration/basic
> JAVA_HOME=/opt/jdk-11/ PATH=$JAVA_HOME/bin:$PATH mvn test -Dtest=LdapLoginModuleTestCase#testLdaps -Djavax.net.debug=all
> {code}
> {code}
> javax.net.ssl|ERROR|1D|NioProcessor-5|2018-08-30 12:28:39.055 CEST|TransportContext.java:317|Fatal (CERTIFICATE_UNKNOWN): Received fatal alert: certificate_unknown (
> "throwable" : {
> javax.net.ssl.SSLHandshakeException: Received fatal alert: certificate_unknown
> at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:128)
> at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:117)
> at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:312)
> at java.base/sun.security.ssl.Alert$AlertConsumer.consume(Alert.java:270)
> at java.base/sun.security.ssl.TransportContext.dispatch(TransportContext.java:181)
> at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:164)
> at java.base/sun.security.ssl.SSLEngineImpl.decode(SSLEngineImpl.java:666)
> at java.base/sun.security.ssl.SSLEngineImpl.readRecord(SSLEngineImpl.java:621)
> at java.base/sun.security.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:438)
> at java.base/sun.security.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:417)
> at java.base/javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:626)
> at org.apache.mina.filter.ssl.SslHandler.unwrap(SslHandler.java:754)
> {code}
> Edit: the backing error is:
> {code}
> 2018-08-31 15:23:47,788 ERROR [stderr] (default task-1) "throwable" : {
> 2018-08-31 15:23:47,788 ERROR [stderr] (default task-1) java.security.cert.CertificateException: No subject alternative names present
> 2018-08-31 15:23:47,788 ERROR [stderr] (default task-1) at java.base/sun.security.util.HostnameChecker.matchIP(HostnameChecker.java:137)
> 2018-08-31 15:23:47,788 ERROR [stderr] (default task-1) at java.base/sun.security.util.HostnameChecker.match(HostnameChecker.java:96)
> 2018-08-31 15:23:47,788 ERROR [stderr] (default task-1) at java.base/sun.security.ssl.X509TrustManagerImpl.checkIdentity(X509TrustManagerImpl.java:463)
> 2018-08-31 15:23:47,788 ERROR [stderr] (default task-1) at java.base/sun.security.ssl.X509TrustManagerImpl.checkIdentity(X509TrustManagerImpl.java:434)
> 2018-08-31 15:23:47,788 ERROR [stderr] (default task-1) at java.base/sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:233)
> 2018-08-31 15:23:47,789 ERROR [stderr] (default task-1) at java.base/sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:129)
> 2018-08-31 15:23:47,789 ERROR [stderr] (default task-1) at java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.checkServerCerts(CertificateMessage.java:626)
> 2018-08-31 15:23:47,789 ERROR [stderr] (default task-1) at java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.onCertificate(CertificateMessage.java:461)
> 2018-08-31 15:23:47,789 ERROR [stderr] (default task-1) at java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.consume(CertificateMessage.java:361)
> 2018-08-31 15:23:47,789 ERROR [stderr] (default task-1) at java.base/sun.security.ssl.SSLHandshake.consume(SSLHandshake.java:392)
> {code}
--
This message was sent by Atlassian JIRA
(v7.5.0#75005)
More information about the jboss-jira
mailing list