You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@camel.apache.org by "JiriOndrusek (via GitHub)" <gi...@apache.org> on 2023/10/26 14:13:12 UTC

[PR] Platform-http test fails in FIPS environment [camel-quarkus]

JiriOndrusek opened a new pull request, #5463:
URL: https://github.com/apache/camel-quarkus/pull/5463

   fixes https://github.com/apache/camel-quarkus/issues/5462
   
   <!-- Uncomment and fill this section if your PR is not trivial
   [ ] An issue should be filed for the change unless this is a trivial change (fixing a typo or similar). One issue should ideally be fixed by not more than one commit and the other way round, each commit should fix just one issue, without pulling in other changes.
   [ ] Each commit in the pull request should have a meaningful and properly spelled subject line and body. Copying the title of the associated issue is typically enough. Please include the issue number in the commit message prefixed by #.
   [ ] The pull request description should explain what the pull request does, how, and why. If the info is available in the associated issue or some other external document, a link is enough.
   [ ] Phrases like Fix #<issueNumber> or Fixes #<issueNumber> will auto-close the named issue upon merging the pull request. Using them is typically a good idea.
   [ ] Please run mvn process-resources -Pformat (and amend the changes if necessary) before sending the pull request.
   [ ] Contributor guide is your good friend: https://camel.apache.org/camel-quarkus/latest/contributor-guide.html
   -->


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

Re: [PR] Platform-http test fails in FIPS environment [camel-quarkus]

Posted by "jamesnetherton (via GitHub)" <gi...@apache.org>.
jamesnetherton commented on code in PR #5463:
URL: https://github.com/apache/camel-quarkus/pull/5463#discussion_r1377775532


##########
integration-tests/platform-http/README.adoc:
##########
@@ -1,15 +1,37 @@
 # Generating server SSL certificates and trust store
 
-1. Generate the certificate keypair
+* The CA is self-signed:
 
-When prompted for the 'Common Name', use localhost. The other prompts can be skipped.
+When prompted for certificate information, everything is default.
+```
+$ openssl genrsa -out ca.key 2048
+$ openssl req -x509 -new -key ca.key -nodes -out ca.pem -config ca-openssl.cnf -days 3650 -extensions v3_req
+```
+
+* Server certificate issued by CA:
+
+```
+$ openssl genrsa -out server.key.rsa 2048
+$ openssl pkcs8 -topk8 -in server.key.rsa -out server.key -nocrypt
+$ rm server.key.rsa
+```
+
+When prompted for certificate information, everything is default except the common name which is set to _localhost_ for simple testing.
+```
+$ openssl req -new -key server.key -out server.csr
+$ openssl x509 -req -in server.csr -CA ca.pem -CAkey ca.key -CAcreateserial -out server.pem -outform PEM -days 5000
+```
+
+*  Rename files
 
 ```
-openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout src/main/resources/server-key.pem -out src/main/resources/server-cert.pem
+$ mv server.pem server-cert.pem
+$ mv server.key server-key.pem
 ```
 
-2. Generate the PKCS12 trust store
+* Generate the PKCS12 trust store
 
+When prompted for pssword, value is _s3cr3t_.

Review Comment:
   ```suggestion
   When prompted for a password, the value is _s3cr3t_.
   ```



-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

Re: [PR] Platform-http test fails in FIPS environment [camel-quarkus]

Posted by "jamesnetherton (via GitHub)" <gi...@apache.org>.
jamesnetherton commented on code in PR #5463:
URL: https://github.com/apache/camel-quarkus/pull/5463#discussion_r1373273468


##########
integration-tests/platform-http/src/test/resources/README:
##########
@@ -0,0 +1,7 @@
+The test credentials have been generated according to GRPC module -> https://github.com/apache/camel/blob/main/components/camel-grpc/src/test/resources/certs/README

Review Comment:
   We already have a README for this, so best to reuse it:
   
   https://github.com/apache/camel-quarkus/blob/main/integration-tests/platform-http/README.adoc
   
   Instead of linking to `camel-grpc` please copy over the relevant info. 



-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

Re: [PR] Platform-http test fails in FIPS environment [camel-quarkus]

Posted by "jamesnetherton (via GitHub)" <gi...@apache.org>.
jamesnetherton merged PR #5463:
URL: https://github.com/apache/camel-quarkus/pull/5463


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

Re: [PR] Platform-http test fails in FIPS environment [camel-quarkus]

Posted by "JiriOndrusek (via GitHub)" <gi...@apache.org>.
JiriOndrusek commented on code in PR #5463:
URL: https://github.com/apache/camel-quarkus/pull/5463#discussion_r1377438262


##########
integration-tests/platform-http/src/test/resources/README:
##########
@@ -0,0 +1,7 @@
+The test credentials have been generated according to GRPC module -> https://github.com/apache/camel/blob/main/components/camel-grpc/src/test/resources/certs/README

Review Comment:
   sorry, I missed the file in the module root, I'll fix it



-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

Re: [PR] Platform-http test fails in FIPS environment [camel-quarkus]

Posted by "JiriOndrusek (via GitHub)" <gi...@apache.org>.
JiriOndrusek commented on code in PR #5463:
URL: https://github.com/apache/camel-quarkus/pull/5463#discussion_r1377508247


##########
integration-tests/platform-http/src/test/resources/README:
##########
@@ -0,0 +1,7 @@
+The test credentials have been generated according to GRPC module -> https://github.com/apache/camel/blob/main/components/camel-grpc/src/test/resources/certs/README

Review Comment:
   fixed



-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@camel.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org