[ZOOKEEPER-3228] [TLS] Fix key usage extension in test certs - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 3.6.0, 3.5.5
Fix Version/s: 3.6.0, 3.5.5
Component/s: None
Labels:
- ssl-tls

Description

Key usage extension is wrong in test certs created by X509TestHelpers. This works with Java SSL stack because it allows sloppy certs, but breaks with Netty's OpenSSL stack. My Netty OpenSSL code is not ready for upstream yet, but fixing the test cert extensions is a prerequisite and can go in separately.

Attachments

Activity

People

Assignee:: Ilya Maykov

Reporter:: Ilya Maykov

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 20/Dec/18 18:17

Updated:: 20/May/19 17:50

Resolved:: 02/Jan/19 12:41