You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@nifi.apache.org by "Peter Gyori (Jira)" <ji...@apache.org> on 2022/03/10 17:10:00 UTC

[jira] [Created] (NIFI-9786) KeyStoreUtils.isStoreValid() suppresses exceptions without logging when trying to open a keystore

Peter Gyori created NIFI-9786:
---------------------------------

             Summary: KeyStoreUtils.isStoreValid() suppresses exceptions without logging when trying to open a keystore
                 Key: NIFI-9786
                 URL: https://issues.apache.org/jira/browse/NIFI-9786
             Project: Apache NiFi
          Issue Type: Improvement
            Reporter: Peter Gyori


KeyStoreUtils.isStoreValid() simply returns false if the keystore cannot be opened e.g. because the password is wrong. There is no log entry about why the keystore is not valid.

As a result when SslContextFactory.getTrustManagers() method attempts to read a trust store file using the configured properties, if the password is wrong, the method is not informed why, and only throws a TlsException stating "The truststore properties are not valid".

It would be useful to add debug-level logging to KeyStoreUtils.isStoreValid() to log the reason for the keystore being invalid.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)