You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@ignite.apache.org by "Andrew Medvedev (JIRA)" <ji...@apache.org> on 2018/10/08 10:57:00 UTC

[jira] [Commented] (IGNITE-9804) SSL: Expired certificates are not refused

    [ https://issues.apache.org/jira/browse/IGNITE-9804?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16641652#comment-16641652 ] 

Andrew Medvedev commented on IGNITE-9804:
-----------------------------------------

[^SslTests.java]Looks like expired certs are handled properly after all - connection refused as per attached reproducer (expired cert see in [https://github.com/apache/ignite/compare/master...gridgain:andmed-ssl-tests)]

> SSL: Expired certificates are not refused
> -----------------------------------------
>
>                 Key: IGNITE-9804
>                 URL: https://issues.apache.org/jira/browse/IGNITE-9804
>             Project: Ignite
>          Issue Type: Bug
>            Reporter: Andrew Medvedev
>            Priority: Major
>         Attachments: SslTests.java
>
>
> Expired certificate scenarios are not covered by current tests
>  # Set date to 2038:  sudo date --set='@2147483647'
>  # Run org.apache.ignite.client.SecurityTest#testEncryption
> Connection is accepted although certificate expires in 2032.
>  



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)