You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@zookeeper.apache.org by "Ilya Maykov (JIRA)" <ji...@apache.org> on 2018/12/20 18:20:00 UTC

[jira] [Commented] (ZOOKEEPER-3228) [TLS] Fix key usage extension in test certs

    [ https://issues.apache.org/jira/browse/ZOOKEEPER-3228?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16726107#comment-16726107 ] 

Ilya Maykov commented on ZOOKEEPER-3228:
----------------------------------------

See https://github.com/apache/zookeeper/pull/743

> [TLS] Fix key usage extension in test certs
> -------------------------------------------
>
>                 Key: ZOOKEEPER-3228
>                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-3228
>             Project: ZooKeeper
>          Issue Type: Improvement
>    Affects Versions: 3.6.0, 3.5.5
>            Reporter: Ilya Maykov
>            Assignee: Ilya Maykov
>            Priority: Minor
>
> Key usage extension is wrong in test certs created by X509TestHelpers. This works with Java SSL stack because it allows sloppy certs, but breaks with Netty's OpenSSL stack. My Netty OpenSSL code is not ready for upstream yet, but fixing the test cert extensions is a prerequisite and can go in separately.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)