[
https://issues.apache.org/jira/browse/HBASE-29553?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Istvan Toth updated HBASE-29553:
--------------------------------
Status: Patch Available (was: Open)
> TestMutualTlsServerSide failure since allowing TLSv13
> -----------------------------------------------------
>
> Key: HBASE-29553
> URL: https://issues.apache.org/jira/browse/HBASE-29553
> Project: HBase
> Issue Type: Bug
> Components: security, test
> Affects Versions: 3.0.0-beta-2
> Reporter: Istvan Toth
> Assignee: Istvan Toth
> Priority: Major
> Labels: pull-request-available
>
> For some reason, an extra
> org.apache.hbase.thirdparty.io.netty.handler.codec.DecoderException is
> present in the Expception chain if we allow TLSv13.
> {quote} [ERROR]
> org.apache.hadoop.hbase.security.TestMutualTlsServerSide.testClientAuth[187:
> caKeyType=EC, certKeyType=EC, keyPassword=pa$$w0rd,
> validateClientHostnames=false, testCase=false,
> clientAuthMode=NON_VERIFIABLE_CERT] Time elapsed: 0.058 s <<< FAILURE!
> java.lang.AssertionError:
>
> Expected: an instance of javax.net.ssl.SSLHandshakeException
> but: <java.io.IOException: Call to address=localhost:45861 failed on
> local exception: java.io.IOException:
> org.apache.hbase.thirdparty.io.netty.handler.codec.DecoderException:
> javax.net.ssl.SSLHandshakeException: Received fatal alert:
> certificate_unknown> is a java.io.IOException
> at org.hamcrest.MatcherAssert.assertThat(MatcherAssert.java:20)
> at org.hamcrest.MatcherAssert.assertThat(MatcherAssert.java:8)
> at
> org.apache.hadoop.hbase.security.AbstractTestMutualTls.testClientAuth(AbstractTestMutualTls.java:218){quote}
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
