You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@tez.apache.org by "László Bodor (Jira)" <ji...@apache.org> on 2021/10/25 11:23:00 UTC
[jira] [Resolved] (TEZ-4342) TestSecureShuffle is broken - No
subject alternative names present
[ https://issues.apache.org/jira/browse/TEZ-4342?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
László Bodor resolved TEZ-4342.
-------------------------------
Resolution: Fixed
> TestSecureShuffle is broken - No subject alternative names present
> ------------------------------------------------------------------
>
> Key: TEZ-4342
> URL: https://issues.apache.org/jira/browse/TEZ-4342
> Project: Apache Tez
> Issue Type: Bug
> Reporter: László Bodor
> Assignee: László Bodor
> Priority: Major
> Fix For: 0.10.2
>
> Attachments: syslog_attempt_1635109228819_0001_1_01_000001_0
>
> Time Spent: 50m
> Remaining Estimate: 0h
>
> testSecureShuffle[test[sslInCluster:true, resultWithTezSSL:0, resultWithoutTezSSL:1, asyncHttp:true]]
> {code}
> java.net.ConnectException: No subject alternative names present
> at org.asynchttpclient.netty.channel.NettyConnectListener.onFailure(NettyConnectListener.java:179)
> at org.asynchttpclient.netty.channel.NettyConnectListener$1.onFailure(NettyConnectListener.java:151)
> at org.asynchttpclient.netty.SimpleFutureListener.operationComplete(SimpleFutureListener.java:26)
> at io.netty.util.concurrent.DefaultPromise.notifyListener0(DefaultPromise.java:577)
> at io.netty.util.concurrent.DefaultPromise.notifyListeners0(DefaultPromise.java:570)
> at io.netty.util.concurrent.DefaultPromise.notifyListenersNow(DefaultPromise.java:549)
> at io.netty.util.concurrent.DefaultPromise.notifyListeners(DefaultPromise.java:490)
> at io.netty.util.concurrent.DefaultPromise.setValue0(DefaultPromise.java:615)
> at io.netty.util.concurrent.DefaultPromise.setFailure0(DefaultPromise.java:608)
> at io.netty.util.concurrent.DefaultPromise.tryFailure(DefaultPromise.java:117)
> at io.netty.handler.ssl.SslHandler.handleUnwrapThrowable(SslHandler.java:1259)
> at io.netty.handler.ssl.SslHandler.decodeJdkCompatible(SslHandler.java:1241)
> at io.netty.handler.ssl.SslHandler.decode(SslHandler.java:1282)
> at io.netty.handler.codec.ByteToMessageDecoder.decodeRemovalReentryProtection(ByteToMessageDecoder.java:498)
> at io.netty.handler.codec.ByteToMessageDecoder.callDecode(ByteToMessageDecoder.java:437)
> at io.netty.handler.codec.ByteToMessageDecoder.channelRead(ByteToMessageDecoder.java:276)
> at io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:379)
> at io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:365)
> at io.netty.channel.AbstractChannelHandlerContext.fireChannelRead(AbstractChannelHandlerContext.java:357)
> at io.netty.channel.DefaultChannelPipeline$HeadContext.channelRead(DefaultChannelPipeline.java:1410)
> at io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:379)
> at io.netty.channel.AbstractChannelHandlerContext.invokeChannelRead(AbstractChannelHandlerContext.java:365)
> at io.netty.channel.DefaultChannelPipeline.fireChannelRead(DefaultChannelPipeline.java:919)
> at io.netty.channel.nio.AbstractNioByteChannel$NioByteUnsafe.read(AbstractNioByteChannel.java:163)
> at io.netty.channel.nio.NioEventLoop.processSelectedKey(NioEventLoop.java:714)
> at io.netty.channel.nio.NioEventLoop.processSelectedKeysOptimized(NioEventLoop.java:650)
> at io.netty.channel.nio.NioEventLoop.processSelectedKeys(NioEventLoop.java:576)
> at io.netty.channel.nio.NioEventLoop.run(NioEventLoop.java:493)
> at io.netty.util.concurrent.SingleThreadEventExecutor$4.run(SingleThreadEventExecutor.java:989)
> at io.netty.util.internal.ThreadExecutorMap$2.run(ThreadExecutorMap.java:74)
> at io.netty.util.concurrent.FastThreadLocalRunnable.run(FastThreadLocalRunnable.java:30)
> at java.lang.Thread.run(Thread.java:748)
> Caused by: javax.net.ssl.SSLHandshakeException: No subject alternative names present
> at sun.security.ssl.Alert.createSSLException(Alert.java:131)
> at sun.security.ssl.TransportContext.fatal(TransportContext.java:324)
> at sun.security.ssl.TransportContext.fatal(TransportContext.java:267)
> at sun.security.ssl.TransportContext.fatal(TransportContext.java:262)
> at sun.security.ssl.CertificateMessage$T12CertificateConsumer.checkServerCerts(CertificateMessage.java:654)
> at sun.security.ssl.CertificateMessage$T12CertificateConsumer.onCertificate(CertificateMessage.java:473)
> at sun.security.ssl.CertificateMessage$T12CertificateConsumer.consume(CertificateMessage.java:369)
> at sun.security.ssl.SSLHandshake.consume(SSLHandshake.java:377)
> at sun.security.ssl.HandshakeContext.dispatch(HandshakeContext.java:444)
> at sun.security.ssl.SSLEngineImpl$DelegatedTask$DelegatedAction.run(SSLEngineImpl.java:968)
> at sun.security.ssl.SSLEngineImpl$DelegatedTask$DelegatedAction.run(SSLEngineImpl.java:955)
> at java.security.AccessController.doPrivileged(Native Method)
> at sun.security.ssl.SSLEngineImpl$DelegatedTask.run(SSLEngineImpl.java:902)
> at io.netty.handler.ssl.SslHandler.runAllDelegatedTasks(SslHandler.java:1510)
> at io.netty.handler.ssl.SslHandler.runDelegatedTasks(SslHandler.java:1524)
> at io.netty.handler.ssl.SslHandler.unwrap(SslHandler.java:1408)
> at io.netty.handler.ssl.SslHandler.decodeJdkCompatible(SslHandler.java:1235)
> ... 20 more
> Caused by: java.security.cert.CertificateException: No subject alternative names present
> at sun.security.util.HostnameChecker.matchIP(HostnameChecker.java:160)
> at sun.security.util.HostnameChecker.match(HostnameChecker.java:104)
> at sun.security.ssl.X509TrustManagerImpl.checkIdentity(X509TrustManagerImpl.java:457)
> at sun.security.ssl.X509TrustManagerImpl.checkIdentity(X509TrustManagerImpl.java:431)
> at sun.security.ssl.AbstractTrustManagerWrapper.checkAdditionalTrust(SSLContextImpl.java:1330)
> at sun.security.ssl.AbstractTrustManagerWrapper.checkServerTrusted(SSLContextImpl.java:1271)
> at sun.security.ssl.CertificateMessage$T12CertificateConsumer.checkServerCerts(CertificateMessage.java:632)
> ... 32 more
> {code}
--
This message was sent by Atlassian Jira
(v8.3.4#803005)