You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@nifi.apache.org by "Peter Gyori (Jira)" <ji...@apache.org> on 2022/03/10 17:10:00 UTC
[jira] [Created] (NIFI-9786) KeyStoreUtils.isStoreValid() suppresses exceptions without logging when trying to open a keystore
Peter Gyori created NIFI-9786:
---------------------------------
Summary: KeyStoreUtils.isStoreValid() suppresses exceptions without logging when trying to open a keystore
Key: NIFI-9786
URL: https://issues.apache.org/jira/browse/NIFI-9786
Project: Apache NiFi
Issue Type: Improvement
Reporter: Peter Gyori
KeyStoreUtils.isStoreValid() simply returns false if the keystore cannot be opened e.g. because the password is wrong. There is no log entry about why the keystore is not valid.
As a result when SslContextFactory.getTrustManagers() method attempts to read a trust store file using the configured properties, if the password is wrong, the method is not informed why, and only throws a TlsException stating "The truststore properties are not valid".
It would be useful to add debug-level logging to KeyStoreUtils.isStoreValid() to log the reason for the keystore being invalid.
--
This message was sent by Atlassian Jira
(v8.20.1#820001)